CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-15068

A broken access control vulnerability in Smart Battery A4, a multifunctional portable charger, firmware version ?<= r1.7.9 allows an attacker to get/reset administrator’s password without any authentication.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.5%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 10.0

References

https://tvn.twcert.org.tw/taiwanvn/TVN-201908003
https://www.twcert.org.tw/subpages/ServeThePublic/public_document_details.aspx?lang=en-US&id=45
https://tvn.twcert.org.tw/taiwanvn/TVN-201908003
https://www.twcert.org.tw/subpages/ServeThePublic/public_document_details.aspx?lang=en-US&id=45

Products affected by CVE-2019-15068

Gigastone » Smart Battery A4 » Version: N/A

cpe:2.3:h:gigastone:smart_battery_a4:-
Gigastone » Smart Battery A4 Firmware » Version: N/A

cpe:2.3:o:gigastone:smart_battery_a4_firmware:-
Gigastone » Smart Battery A4 Firmware » Version: r1.7.9

cpe:2.3:o:gigastone:smart_battery_a4_firmware:r1.7.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-15068

Products

Pricing

Contact Us