Medium severity5.2NVD Advisory· Published Oct 26, 2022· Updated Jun 17, 2026
CVE-2022-40703
CVE-2022-40703
Description
CWE-302 Authentication Bypass by Assumed-Immutable Data in AliveCor Kardia App version 5.17.1-754993421 and prior
on Android allows an unauthenticated attacker with physical access to the Android device containing the app to bypass application authentication and alter information in the app.
Affected products
2<=5.17.1-754993421+ 1 more
- (no CPE)range: <=5.17.1-754993421
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
1- www.cisa.gov/uscert/ics/advisories/icsma-22-298-01nvdMitigationThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.