CVE-2023-6998 - Vulnerability Details - OpenCVE

Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Coolkit	Ewelink

Configuration 1 [-]

OR	cpe:2.3:a:coolkit:ewelink::::::android::*
	cpe:2.3:a:coolkit:ewelink::::::iphone_os::*

No data.

References

Link	Providers
https://cert.pl/en/posts/2023/12/CVE-2023-6998/
https://cert.pl/posts/2023/12/CVE-2023-6998/
https://ewelink.cc/app/

History

Thu, 10 Oct 2024 16:30:00 +0000

Type	Values Removed	Values Added
Weaknesses	CWE-269

Thu, 10 Oct 2024 15:45:00 +0000

Type	Values Removed	Values Added
Description	Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0.	Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0.
Weaknesses		CWE-305

MITRE

Status: PUBLISHED

Assigner: CERT-PL

Published: 2023-12-30T18:32:07.452Z

Updated: 2024-10-10T15:36:12.108Z

Reserved: 2023-12-20T14:04:20.543Z

Link: CVE-2023-6998

Vulnrichment

No data.

NVD

Status : Modified

Published: 2023-12-30T19:15:08.303

Modified: 2024-11-21T08:45:00.053

Link: CVE-2023-6998

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2023-6998", "assignerOrgId": "4bb8329e-dd38-46c1-aafb-9bf32bcb93c6", "state": "PUBLISHED", "assignerShortName": "CERT-PL", "dateReserved": "2023-12-20T14:04:20.543Z", "datePublished": "2023-12-30T18:32:07.452Z", "dateUpdated": "2024-10-10T15:36:12.108Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://play.google.com/store/apps/details?id=com.coolkit", "defaultStatus": "unaffected", "platforms": ["Android"], "product": "eWeLink - Smart Home", "vendor": "CoolKit Technology", "versions": [{"lessThan": "5.2.0", "status": "affected", "version": "0", "versionType": "custom"}]}, {"collectionURL": "https://apps.apple.com/us/app/ewelink-smart-home/id1035163158", "defaultStatus": "unaffected", "platforms": ["iOS"], "product": "eWeLink-Smart Home", "vendor": "CoolKit Technology", "versions": [{"lessThan": "5.2.0", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Jan Adamski (NASK)"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.<p>This issue affects eWeLink before 5.2.0.</p>"}], "value": "Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0."}], "impacts": [{"capecId": "CAPEC-115", "descriptions": [{"lang": "en", "value": "CAPEC-115 Authentication Bypass"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-305", "description": "CWE-305 Authentication Bypass by Primary Weakness", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "4bb8329e-dd38-46c1-aafb-9bf32bcb93c6", "shortName": "CERT-PL", "dateUpdated": "2024-10-10T15:36:12.108Z"}, "references": [{"tags": ["third-party-advisory"], "url": "https://cert.pl/en/posts/2023/12/CVE-2023-6998/"}, {"tags": ["third-party-advisory"], "url": "https://cert.pl/posts/2023/12/CVE-2023-6998/"}, {"tags": ["product"], "url": "https://ewelink.cc/app/"}], "source": {"discovery": "UNKNOWN"}, "title": "Lockscreen bypass in eWeLink App", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T08:50:07.670Z"}, "title": "CVE Program Container", "references": [{"tags": ["third-party-advisory", "x_transferred"], "url": "https://cert.pl/en/posts/2023/12/CVE-2023-6998/"}, {"tags": ["third-party-advisory", "x_transferred"], "url": "https://cert.pl/posts/2023/12/CVE-2023-6998/"}, {"tags": ["product", "x_transferred"], "url": "https://ewelink.cc/app/"}]}]}}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:coolkit:ewelink:*:*:*:*:*:android:*:*", "matchCriteriaId": "EC7555B6-75B2-4D23-99EC-FED1D5097018", "versionEndExcluding": "5.2.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:coolkit:ewelink:*:*:*:*:*:iphone_os:*:*", "matchCriteriaId": "4BD37BFB-D978-4C15-895A-5D86D064743F", "versionEndExcluding": "5.2.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Improper privilege management vulnerability in CoolKit Technology eWeLink on Android and iOS allows application lockscreen bypass.This issue affects eWeLink before 5.2.0."}, {"lang": "es", "value": "Vulnerabilidad de administraci\u00f3n de privilegios inadecuada en CoolKit Technology eWeLink en Android e iOS permite omitir la pantalla de bloqueo de la aplicaci\u00f3n. Este problema afecta a eWeLink antes de 5.2.0."}], "id": "CVE-2023-6998", "lastModified": "2024-11-21T08:45:00.053", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 5.2, "source": "cvd@cert.pl", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.7, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.5, "impactScore": 5.2, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-12-30T19:15:08.303", "references": [{"source": "cvd@cert.pl", "tags": ["Third Party Advisory"], "url": "https://cert.pl/en/posts/2023/12/CVE-2023-6998/"}, {"source": "cvd@cert.pl", "tags": ["Third Party Advisory"], "url": "https://cert.pl/posts/2023/12/CVE-2023-6998/"}, {"source": "cvd@cert.pl", "tags": ["Product"], "url": "https://ewelink.cc/app/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://cert.pl/en/posts/2023/12/CVE-2023-6998/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://cert.pl/posts/2023/12/CVE-2023-6998/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Product"], "url": "https://ewelink.cc/app/"}], "sourceIdentifier": "cvd@cert.pl", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-305"}], "source": "cvd@cert.pl", "type": "Secondary"}, {"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}