CVE-2019-13406
CVE-2019-13406 refers to a broken access control vulnerability in Advan VD-1 firmware up to version 230. An unauthenticated attacker can POST to cgibin/ApkUpload.cgi and install arbitrary APKs. The issue is validated across multiple sources in the Connected documents (NVD/NVD-derived entries and ...