Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2016-6540
HistoryJul 06, 2018 - 9:29 p.m.

Improper access control

2018-07-0621:29:00
PRIOn knowledge base
www.prio-n.com
1

6.5 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

52.2%

JSON

Unauthenticated access to the cloud-based service maintained by TrackR Bravo is allowed for querying or sending GPS data for any Trackr device by using the tracker ID number which can be discovered as described in CVE-2016-6539. Updated apps, version 5.1.6 for iOS and 2.2.5 for Android, have been released by the vendor to address the vulnerabilities in CVE-2016-6538, CVE-2016-6539, CVE-2016-6540 and CVE-2016-6541.

Related

cvelist 4
nvd 4
cve 4
prion 3
cert 1
securelist 1
cvelist
cvelist
CVE-2016-6539 TrackR Bravo MAC address can be exposed in close proximity and used to obtain the device ID
2018-07-06 21:00:00
CVE-2016-6540 TrackR Bravo is missing authentication for the cloud service and allows querying or sending of GPS data from unauthenticated users
2018-07-06 21:00:00
CVE-2016-6538 TrackR Bravo mobile application stores account passwords in cleartext
2018-07-06 21:00:00
nvd
nvd
CVE-2016-6540
2018-07-06 21:29:00
CVE-2016-6538
2018-07-06 21:29:00
CVE-2016-6539
2018-07-06 21:29:00
cve
cve
CVE-2016-6539
2018-07-06 21:29:00
CVE-2016-6538
2018-07-06 21:29:00
CVE-2016-6541
2018-07-06 21:29:00
prion
prion
Code injection
2018-07-06 21:29:00
Code injection
2018-07-06 21:29:00
Code injection
2018-07-06 21:29:00
cert
cert
TrackR Bravo contains multiple vulnerabilities
2016-10-25 00:00:00
securelist
securelist
I know where your pet is
2018-05-22 10:00:52

6.5 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

52.2%

JSON
Related for PRION:CVE-2016-6540
cvelist4nvd4cve4prion3cert1securelist1