Vulnerabilities (CVE)

Filtered by vendor Magicsmotion Subscribe
Filtered by product Flamingo 2 Firmware
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2020-12730 1 Magicsmotion 2 Flamingo 2, Flamingo 2 Firmware 2024-02-04 2.9 LOW 5.3 MEDIUM
MagicMotion Flamingo 2 lacks BLE encryption, enabling data sniffing and packet forgery.
CVE-2020-12729 1 Magicsmotion 2 Flamingo 2, Flamingo 2 Firmware 2024-02-04 2.1 LOW 4.6 MEDIUM
MagicMotion Flamingo 2 has a lack of access control for reading from device descriptors.
CVE-2020-12731 1 Magicsmotion 2 Flamingo 2, Flamingo 2 Firmware 2024-02-04 5.0 MEDIUM 7.5 HIGH
The MagicMotion Flamingo 2 application for Android stores data on an sdcard under com.vt.magicmotion/files/Pictures, whence it can be read by other applications.