How severe is CVE-2024-1608?

CVE-2024-1608 has a CVSS v3 score of 9.1 (CRITICAL).

CVE-2024-1608

Name: usercenter_credit_software_development_kit
Author: oppo

9.1CRITICAL

In OPPO Usercenter Credit SDK, there's a possible escalation of privilege due to loose permission check, This could lead to application internal information leak w/o user interaction.

Publicado: 2/20/2024Actualizado: 4/2/2025

Descripción

In OPPO Usercenter Credit SDK, there's a possible escalation of privilege due to loose permission check, This could lead to application internal information leak w/o user interaction.

Análisis IAImpulsado por IA

Productos Afectados

oppousercenter_credit_software_development_kit

Referencias

https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1759867611954552832
Vendor Advisory
https://security.oppo.com/en/noticeDetail?notice_only_key=NOTICE-1759867611954552832
Vendor Advisory