Megafeis: >> Bofei Dbd+ Security Vulnerabilities
An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker to unlock model(s) without authorization via arbitrary API requests.
CVSS Score
8.1
EPSS Score
0.001
Published
2023-03-21
An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker to gain access to sensitive account information via insecure password policy.
CVSS Score
7.5
EPSS Score
0.003
Published
2023-03-21
An insecure password reset issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 service via insecure expiry mechanism.
CVSS Score
9.8
EPSS Score
0.003
Published
2023-03-21