[Japanese]

JVNDB-2024-000105

Multiple vulnerabilities in Smart-tab

Overview

Smart-tab provided by TECHNO SUPPORT COMPANY is a multi-functional guest room tablet system for hotels and other accommodation facilities. Smart-tab contains multiple vulnerabilities listed below.

* Active debug code (CWE-489) - CVE-2024-41999
* Plaintext storage of a password (CWE-256) - CVE-2024-42496

Shuto Imai of LAC Co., Ltd. reported these vulnerabilities to IPA.
JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.
CVSS Severity (What is CVSS?)

CVSS V3 Severity:
Base Metrics 6.8 (Medium) [IPA Score]
  • Attack Vector: physics
  • Attack Complexity: Low
  • Privileges Required: None
  • User Interaction: None
  • Scope: Unchanged
  • Confidentiality Impact: High
  • Integrity Impact: High
  • Availability Impact: High
The above CVSS base scores have been assigned for CVE-2024-41999

CVSS V3 Severity:
Base Metrics 2.4 (Low) [IPA Score]
  • Attack Vector: Physical
  • Attack Complexity: Low
  • Privileges Required: None
  • User Interaction: None
  • Scope: Changed
  • Confidentiality Impact: Low
  • Integrity Impact: None
  • Availability Impact: None
The above CVSS base scores have been assigned for CVE-2024-42496
Affected Products


TECHNO SUPPORT COMPANY
  • Smart-tab Android app installed April 2023 or earlier

Impact

* An attacker with physical access to the device may exploit the debug function to gain access to the OS functions, escalate the privilege, change the device's settings, or spoof devices in other rooms (CVE-2024-41999)

* An attacker with physical access to the device may retrieve the credential information, and spoof the device to access the related external service (CVE-2024-42496)
Solution

[Update the product]
Update the product to the fixed version.

According to the developer, they have notified these vulnerabilities to the users and have updated the affected products.
Vendor Information

TECHNO SUPPORT COMPANY
CWE (What is CWE?)

  1. No Mapping(CWE-Other) [IPA Evaluation]
CVE (What is CVE?)

  1. CVE-2024-41999
  2. CVE-2024-42496
References

  1. JVN : JVN#42445661
Revision History

  • [2024/09/30]
      Web page was published

Date Public2024/09/30
Date First Published2024/09/30
Date Last Updated2024/09/30