The vulnerability of the online platform GarminConnect, related to the lack of measures taken to protect the SQL query structure, allows a perpetrator to access protected information.

The vulnerability of the online platform GarminConnect relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability could allow an attacker to access protected information...

CVE-2022-46081

In Garmin Connect 4.61, terminating a LiveTrack session wouldn't prevent the LiveTrack API from continued exposure of private personal information. NOTE: this is disputed by the vendor because the LiveTrack API service is not a customer-controlled product...

CVE-2022-46081

In Garmin Connect 4.61, terminating a LiveTrack session wouldn't prevent the LiveTrack API from continued exposure of private personal information. NOTE: this is disputed by the vendor because the LiveTrack API service is not a customer-controlled product...

Design/Logic Flaw

DISPUTED In Garmin Connect 4.61, terminating a LiveTrack session wouldn't prevent the LiveTrack API from continued exposure of private personal information. NOTE: this is disputed by the vendor because the LiveTrack API service is not a customer-controlled product...

Garmin Connect 信息泄露漏洞

Garmin Connect is a platform for staying in shape, providing ways to get a full workout and keep a close eye on your health. An information disclosure vulnerability exists in Garmin Connect version 4.61, which stems from the fact that terminating a LiveTrack session does not prevent the LiveTrack...

CVE-2022-46081

In Garmin Connect 4.61, terminating a LiveTrack session wouldn't prevent the LiveTrack API from continued exposure of private personal information. NOTE: this is disputed by the vendor because the LiveTrack API service is not a customer-controlled product...

PT-2023-14809 · Garmin · Garmin Connect

Name of the Vulnerable Software and Affected Versions: Garmin Connect version 4.61 Description: The issue concerns the exposure of private personal information through the LiveTrack API when a LiveTrack session is terminated. This problem is noted in Garmin Connect, where ending a session does no...

CVE-2022-46081

CVE-2022-46081 concerns Garmin Connect 4.61, where terminating a LiveTrack session does not stop exposure of private information via the LiveTrack API. The root cause is described as continued exposure after session end; vendor disputes that the LiveTrack API is customer-controlled. Public detail...

Smartwatch Maker Garmin Shuts Down Services After Ransomware Attack

Garmin, the maker of fitness trackers, smartwatches and GPS-based wearable devices, is currently dealing with a massive worldwide service interruption after getting hit by a targeted ransomware attack, an employee of the company told The Hacker News on condition of anonymity. The company's websit...

UPDATED: Garmin Suffers Reported Ransomware Attack

Garmin, maker of fitness trackers, smartwatches and GPS-related products, has reportedly suffered a widespread ransomware attack — though the facts around the cause remain unconfirmed for now. The manufacturer tweeted on Thursday that its Garmin Connect service is down; Garmin is a free app for...

connect.garmin.com XSS vulnerability

Vulnerable URL: https://connect.garmin.com/modern/oauthConfirm?hl=ruRUtoken=85698b8a-b4b9-44d7-9ebb-4004db6a8c9acallback=https://www.strava.com/oauth/garminconnect/authorize" Details: Description| Value ---|--- Patched:| Yes, at 17.03.2017 Latest check for patch:| 17.03.2017 08:11 GMT Vulnerabili...

Garmin Connect™ Mobile - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Garmin Connect™ Mobile published at the 'play' market has multiple vulnerabilities...