Incorrect Access Control Vulnerability in Chipolo ONE Bluetooth Tracker (2020) iOS App Version 4.13.0

Incorrect Access Control Vulnerability in Chipolo ONE Bluetooth Tracker (2020) iOS App Version 4.13.0

CVE-2022-37193 · HIGH Severity

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Chipolo ONE Bluetooth tracker (2020) Chipolo iOS app version 4.13.0 is vulnerable to Incorrect Access Control. Chipolo devices suffer from access revocation evasion attacks once the malicious sharee obtains the access credentials.

Learn more about our Cis Benchmark Audit For Apple Ios.