CVE-2024-3701

CVE-2024-3701: Improper Authentication in com.transsion.kolun.aiservice

Vendor Tecno
Product com.transsion.kolun.aiservice
Weakness CWE-306 · Missing auth
Published April 15, 2024
Last update August 21, 2024

CVSS base score

What the vulnerability does

01Description

The system application (com.transsion.kolun.aiservice) component does not perform an authentication check, which allows attackers to perform malicious exploitations and affect system services.

Key dates

02Disclosure timeline

April 15, 2024 CVE published
August 21, 2024 Record updated