CVE-2024-4988

CVE-2024-4988: Improper permission control in com.transsion.videocallenhancer

Vendor Tecno

Product com.transsion.videocallenhancer

Weakness CWE-269

Published May 21, 2024

Last update August 21, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

The mobile application (com.transsion.videocallenhancer) interface has improper permission control, which can lead to the risk of private file leakage.

Key dates

02Disclosure timeline

May 21, 2024 CVE published

August 21, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2024-4988 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/269.html

Related vulnerabilities

04Related CVE

CVE-2025-3101 Configurator Theme Core <= 1.4.7 - Authenticated (Subscriber+) Privilege Escalation CVE-2021-26734 Junction Delete leading to elevation of privilege CVE-2016-9489 ManageEngine Applications Manager 12 and 13 is vulnerable to privilege escalation and authentication bypass CVE-2024-13975 Commvault 11.20.0 - 11.36.0 Windows Access Nodes Compromise via Local File Server Agent Abuse CVE-2022-1770 Improper Privilege Management in polonel/trudesk