Vulnerability Description
An issue in TVS Motor Company Limited TVS Connet Android v.4.5.1 and iOS v.5.0.0 allows a remote attacker to escalate privileges via the Emergency Contact Feature. NOTE: this is disputed as discussed in the msn-official/CVE-Evidence repository.
CVSS Score
CRITICAL
Related Weaknesses (CWE)
References
- https://github.com/aaravavi/TVS-Connect-Application-VAPT
- https://github.com/aaravavi/TVS-Connect-Application-VAPT/tree/main
- https://github.com/msn-official/CVE-Evidence
- https://github.com/aaravavi/TVS-Connect-Application-VAPT
- https://github.com/aaravavi/TVS-Connect-Application-VAPT/tree/main
- https://github.com/msn-official/CVE-Evidence
FAQ
What is CVE-2024-33308?
CVE-2024-33308 is a vulnerability with a CVSS score of 9.1 (CRITICAL). An issue in TVS Motor Company Limited TVS Connet Android v.4.5.1 and iOS v.5.0.0 allows a remote attacker to escalate privileges via the Emergency Contact Feature. NOTE: this is disputed as discussed ...
How severe is CVE-2024-33308?
CVE-2024-33308 has been rated CRITICAL with a CVSS base score of 9.1/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2024-33308?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.