ByteOS Network

NVD Vulnerability Details :

CVE-2025-1298

Received

Source-907edf6c-bf03-423e-ab1a-8da27e1aa1ea

Published At-14 Feb, 2025 | 08:15

Updated At-18 Feb, 2025 | 15:15

Logic vulnerability in the mobile application (com.transsion.carlcare) may lead to the risk of account takeover.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Type	Version	Base score	Base severity	Vector
Secondary	3.1	9.8	CRITICAL	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE ID	Type	Source
CWE-287	Secondary	907edf6c-bf03-423e-ab1a-8da27e1aa1ea

Hyperlink	Source	Resource
https://security.tecno.com/SRC/blogdetail/383?lang=en_US	907edf6c-bf03-423e-ab1a-8da27e1aa1ea	N/A
https://security.tecno.com/SRC/securityUpdates	907edf6c-bf03-423e-ab1a-8da27e1aa1ea	N/A