CVE-2022-36782
CVE-2022-36782 involves an authorization flaw in PalGate’s Android device-management client. The vulnerability allows an attacker to enumerate IoT devices, view all entries/exits across gates worldwide, and extract a user database (over 2.8 million users) including names, phone numbers, and movem...