CVE-2022-46081

In Garmin Connect 4.61, terminating a LiveTrack session wouldn't prevent the LiveTrack API from continued exposure of private personal information. NOTE: this is disputed by the vendor because the LiveTrack API service is not a customer-controlled product...

CVE-2022-46081

In Garmin Connect 4.61, terminating a LiveTrack session wouldn't prevent the LiveTrack API from continued exposure of private personal information. NOTE: this is disputed by the vendor because the LiveTrack API service is not a customer-controlled product...

Design/Logic Flaw

DISPUTED In Garmin Connect 4.61, terminating a LiveTrack session wouldn't prevent the LiveTrack API from continued exposure of private personal information. NOTE: this is disputed by the vendor because the LiveTrack API service is not a customer-controlled product...

Garmin Connect 信息泄露漏洞

Garmin Connect is a platform for staying in shape, providing ways to get a full workout and keep a close eye on your health. An information disclosure vulnerability exists in Garmin Connect version 4.61, which stems from the fact that terminating a LiveTrack session does not prevent the LiveTrack...

CVE-2022-46081

In Garmin Connect 4.61, terminating a LiveTrack session wouldn't prevent the LiveTrack API from continued exposure of private personal information. NOTE: this is disputed by the vendor because the LiveTrack API service is not a customer-controlled product...

PT-2023-14809 · Garmin · Garmin Connect

Name of the Vulnerable Software and Affected Versions: Garmin Connect version 4.61 Description: The issue concerns the exposure of private personal information through the LiveTrack API when a LiveTrack session is terminated. This problem is noted in Garmin Connect, where ending a session does no...

CVE-2022-46081

CVE-2022-46081 concerns Garmin Connect 4.61, where terminating a LiveTrack session does not stop exposure of private information via the LiveTrack API. The root cause is described as continued exposure after session end; vendor disputes that the LiveTrack API is customer-controlled. Public detail...

Smartwatch Maker Garmin Shuts Down Services After Ransomware Attack

Garmin, the maker of fitness trackers, smartwatches and GPS-based wearable devices, is currently dealing with a massive worldwide service interruption after getting hit by a targeted ransomware attack, an employee of the company told The Hacker News on condition of anonymity. The company's websit...

UPDATED: Garmin Suffers Reported Ransomware Attack

Garmin, maker of fitness trackers, smartwatches and GPS-related products, has reportedly suffered a widespread ransomware attack — though the facts around the cause remain unconfirmed for now. The manufacturer tweeted on Thursday that its Garmin Connect service is down; Garmin is a free app for...

connect.garmin.com XSS vulnerability

Vulnerable URL: https://connect.garmin.com/modern/oauthConfirm?hl=ruRUtoken=85698b8a-b4b9-44d7-9ebb-4004db6a8c9acallback=https://www.strava.com/oauth/garminconnect/authorize" Details: Description| Value ---|--- Patched:| Yes, at 17.03.2017 Latest check for patch:| 17.03.2017 08:11 GMT Vulnerabili...

Garmin Connect™ Mobile - Dangerous filesystem permissions, WebView code execution vulnerabilities

HackApp vulnerability scanner discovered that application Garmin Connect™ Mobile published at the 'play' market has multiple vulnerabilities...