ID
VAR-201707-1361
TITLE
Bako Travel Android App Has Any User Password Reset Vulnerability
Trust: 0.6
DESCRIPTION
Bago Travel is a car time-sharing and sharing platform created by Beijing Bago Car Leasing Co., Ltd. With the help of the Internet of Things technology and advanced operation model, it realizes an unattended, rent-and-pay smart car usage method, and is committed to providing users with Provide 24-hour safe, convenient and economical car service, improve urban travel efficiency, reduce congestion and emissions, and build a beautiful travel experience. There is an arbitrary user password reset vulnerability in the Android app of Ba Ge Travel. An attacker can use this vulnerability to reset their password arbitrarily.
Trust: 0.6
IOT TAXONOMY
| category: | ['IoT'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | bago car rental | model: | travel app | scope: | - | version: | - | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
PATCH
| title: | Bako Travel Android App Has Any User Password Reset Vulnerability | url: | https://www.cnvd.org.cn/patchinfo/show/95604 | Trust: 0.6 |
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2017-09708 | Trust: 0.6 |
SOURCES
| db: | CNVD | id: | CNVD-2017-09708 |
LAST UPDATE DATE
2022-05-04T09:51:28.277000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2017-09708 | date: | 2017-06-19T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2017-09708 | date: | 2017-07-11T00:00:00 |