CVE-2024-52614

CVSS 3.0 Score 4.0 of 10 (medium)

Details

Published Nov 20, 2024

Updated: Nov 21, 2024

CWE ID 321

Summary

CVE-2024-52614 is a vulnerability affecting the Kura Sushi Official App for Android versions prior to 3.8.5. This issue arises from the use of a hard-coded cryptographic key within the app. An attacker who successfully exploits this vulnerability can gain unauthorized access to user accounts, potentially obtaining sensitive information such as login IDs and passwords for the product. This represents a significant security risk, particularly for local users, as no specific user interaction is required for the exploitation to occur.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0jIoA_
https://www.cve.org/CVERecord?id=CVE-2024-52614
https://nvd.nist.gov/vuln/detail/CVE-2024-52614

Back to Vulnerability Database

CVE-2024-52614

CVSS 3.0 Score 4.0 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations