1. Home
  2. CVE Database
  3. CVE-2024-42496
LOW · 2.4

CVE-2024-42496

Smart-tab Android app installed April 2023 or earlier contains an issue with plaintext storage of a password. If this vulnerability is exploited, an attacker with physical access to the device may ret...

Vulnerability Description

Smart-tab Android app installed April 2023 or earlier contains an issue with plaintext storage of a password. If this vulnerability is exploited, an attacker with physical access to the device may retrieve the credential information and spoof the device to access the related external service.

CVSS Score

2.4

LOW

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Attack Vector
PHYSICAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
NONE
Availability
NONE

Related Weaknesses (CWE)

CWE-256

References

FAQ

What is CVE-2024-42496?

CVE-2024-42496 is a vulnerability with a CVSS score of 2.4 (LOW). Smart-tab Android app installed April 2023 or earlier contains an issue with plaintext storage of a password. If this vulnerability is exploited, an attacker with physical access to the device may ret...

How severe is CVE-2024-42496?

CVE-2024-42496 has been rated LOW with a CVSS base score of 2.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2024-42496?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.