Bravo

CVEs (3)

CVE	Vendor / Product	CVSS	EPSS	Published	Description
CVE-2016-6541	TrackR Bravo	—	0.01	Jul 6, 2018	TrackR Bravo device allows unauthenticated pairing, which enables unauthenticated connected applications to write to various device attributes. Updated apps, version 5.1.6 for iOS and 2.2.5 for Android, have been released by the vendor to address the vulnerabilities in…
CVE-2016-6540	TrackR Bravo	—	0.01	Jul 6, 2018	Unauthenticated access to the cloud-based service maintained by TrackR Bravo is allowed for querying or sending GPS data for any Trackr device by using the tracker ID number which can be discovered as described in CVE-2016-6539. Updated apps, version 5.1.6 for iOS and 2.2.5 for…
CVE-2016-6538	TrackR Bravo	—	0.01	Jul 6, 2018	The TrackR Bravo mobile app stores the account password used to authenticate to the cloud API in cleartext in the cache.db file. Updated apps, version 5.1.6 for iOS and 2.2.5 for Android, have been released by the vendor to address the vulnerabilities in CVE-2016-6538,…

CVE-2016-6541Jul 6, 2018
TrackR
Bravo
risk 0.00cvss —epss 0.01
TrackR Bravo device allows unauthenticated pairing, which enables unauthenticated connected applications to write to various device attributes. Updated apps, version 5.1.6 for iOS and 2.2.5 for Android, have been released by the vendor to address the vulnerabilities in…
CVE-2016-6540Jul 6, 2018
TrackR
Bravo
risk 0.00cvss —epss 0.01
Unauthenticated access to the cloud-based service maintained by TrackR Bravo is allowed for querying or sending GPS data for any Trackr device by using the tracker ID number which can be discovered as described in CVE-2016-6539. Updated apps, version 5.1.6 for iOS and 2.2.5 for…
CVE-2016-6538Jul 6, 2018
TrackR
Bravo
risk 0.00cvss —epss 0.01
The TrackR Bravo mobile app stores the account password used to authenticate to the cloud API in cleartext in the cache.db file. Updated apps, version 5.1.6 for iOS and 2.2.5 for Android, have been released by the vendor to address the vulnerabilities in CVE-2016-6538,…