Access Control Vulnerability in Mercedes me iOS App v1.34.0 and Below: Unauthorized Access to User Maintenance Orders and Sensitive Information

Access Control Vulnerability in Mercedes me iOS App v1.34.0 and Below: Unauthorized Access to User Maintenance Orders and Sensitive Information

CVE-2023-47393 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

An access control issue in Mercedes me IOS APP v1.34.0 and below allows attackers to view the maintenance orders of other users and access sensitive user information via unspecified vectors.

Learn more about our Cis Benchmark Audit For Apple Ios.