CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-40703

CWE-302 Authentication Bypass by Assumed-Immutable Data in AliveCor Kardia App version 5.17.1-754993421 and prior on Android allows an unauthenticated attacker with physical access to the Android device containing the app to bypass application authentication and alter information in the app.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.2%

CVSS Severity

CVSS v3 Score 5.2

References

https://www.cisa.gov/uscert/ics/advisories/icsma-22-298-01
https://www.cisa.gov/uscert/ics/advisories/icsma-22-298-01

Products affected by CVE-2022-40703

Alivecor » Kardia » Version: N/A

cpe:2.3:a:alivecor:kardia:-
Alivecor » Kardia » Version: 5.17.1-754993421

cpe:2.3:a:alivecor:kardia:5.17.1-754993421

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-40703

Products

Pricing

Contact Us