Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 5:18 a.m.5 views

CVE-2023-3066

Incorrect Authorization vulnerability in Mobatime mobile application AMXGT100 allows a low-privileged user to impersonate anyone else, including administratorsThis issue affects Mobatime mobile application AMXGT100: through 1.3.20...

8.1CVSS6.9AI score0.00587EPSS
Exploits1References1
OSV
OSV
added 2023/06/05 9:15 a.m.3 views

CVE-2023-3065

Improper Authentication vulnerability in Mobatime mobile application AMXGT100 allows Authentication Bypass.This issue affects Mobatime mobile application AMXGT100 through 1.3.20...

9.1CVSS5.8AI score0.00783EPSS
Exploits2References1
OSV
OSV
added 2023/06/05 9:15 a.m.3 views

CVE-2023-3066

Incorrect Authorization vulnerability in Mobatime mobile application AMXGT100 allows a low-privileged user to impersonate anyone else, including administratorsThis issue affects Mobatime mobile application AMXGT100: through 1.3.20...

8.1CVSS6.7AI score0.00598EPSS
Exploits2References1
Prion
Prion
added 2023/06/05 9:15 a.m.17 views

Code injection

Anonymous user may get the list of existing users managed by the application, that could ease further attacks see CVE-2023-3065 and 3066This issue affects Mobatime mobile application AMXGT100 through 1.3.20...

5CVSS7.1AI score0.00783EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2023/06/05 8:24 a.m.53 views

CVE-2023-3064

CVE-2023-3064 concerns the Mobatime AMXGT100 mobile app up to version 1.3.20, where an anonymous user can obtain the list of existing users. Related entries CVE-2023-3065 and CVE-2023-3066 describe broader authentication issues: CVE-2023-3065 (improper authentication) allows an authentication byp...

7.5CVSS7.1AI score0.00598EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder