VYPR

Qardio Arm

by Qardio

CVEs (2)

  • CVE-2025-23421MedFeb 13, 2025
    risk 0.42cvss 6.4epss 0.00

    An attacker could obtain firmware files and reverse engineer their intended use leading to loss of confidentiality and integrity of the hardware devices enabled by the Qardio iOS and Android applications.

  • CVE-2025-20615Feb 13, 2025
    risk 0.00cvss epss 0.00

    The Qardio Arm iOS application exposes sensitive data such as usernames and passwords in a plist file. This allows an attacker to log in to production-level development accounts and access an engineering backdoor in the application. The engineering backdoor allows the…