VYPR
Medium severity5.2NVD Advisory· Published Oct 26, 2022· Updated Jun 17, 2026

CVE-2022-40703

CVE-2022-40703

Description

CWE-302 Authentication Bypass by Assumed-Immutable Data in AliveCor Kardia App version 5.17.1-754993421 and prior

on Android allows an unauthenticated attacker with physical access to the Android device containing the app to bypass application authentication and alter information in the app.

Affected products

2
  • Alivecor/Kardia Appllm-fuzzy2 versions
    <=5.17.1-754993421+ 1 more
    • (no CPE)range: <=5.17.1-754993421
    • (no CPE)range: 0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.