Vulnerabilities > CVE-2024-40240 - Unspecified vulnerability in Homeserve 3.3.4

CVSS 6.8 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

homeserve

NVD

Published: 2024-11-08

Updated: 2024-11-13

Summary

An incorrect access control issue in HomeServe Home Repair' android app - 3.3.4 allows a physically proximate attacker to escalate privileges via the fingerprint authentication function.

Vulnerable Configurations

Part	Description	Count
Application	Homeserve Homeserve Homeserve 3.3.4	1

References

http://homeserve.com
https://apkpure.com/homeserve-home-repair/com.homeserveapp.homeserve
https://zzzxiin.github.io/post/homeserve/