Tecno
Products
5- 2 CVEs
- 1 CVE
- 1 CVE
- 1 CVE
- 1 CVE
Recent CVEs
6| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-0634 | Hig | 0.51 | 7.8 | 0.00 | Apr 2, 2026 | Code execution in AssistFeedbackService of TECNO Pova7 Pro 5G on Android allows local apps to execute arbitrary code as system via command injection. | ||
| CVE-2025-7703 | Low | 0.20 | 3.1 | 0.00 | Jul 16, 2025 | Authentication vulnerability in the mobile application(tech.palm.id)may lead to the risk of information leakage. | ||
| CVE-2025-15385 | 0.00 | — | 0.00 | Jan 6, 2026 | Insufficient Verification of Data Authenticity vulnerability in TECNO Mobile com.Afmobi.Boomplayer allows Authentication Bypass.This issue affects com.Afmobi.Boomplayer: 7.4.63. | |||
| CVE-2025-3698 | 0.00 | — | 0.00 | Apr 16, 2025 | Interface exposure vulnerability in the mobile application (com.transsion.carlcare) may lead to information leakage risk. | |||
| CVE-2024-7697 | 0.00 | — | 0.01 | Aug 12, 2024 | Logical vulnerability in the mobile application (com.transsion.carlcare) may lead to user information leakage risks. | |||
| CVE-2024-3701 | 0.00 | — | 0.00 | Apr 15, 2024 | The system application (com.transsion.kolun.aiservice) component does not perform an authentication check, which allows attackers to perform malicious exploitations and affect system services. |
- risk 0.51cvss 7.8epss 0.00
Code execution in AssistFeedbackService of TECNO Pova7 Pro 5G on Android allows local apps to execute arbitrary code as system via command injection.
- risk 0.20cvss 3.1epss 0.00
Authentication vulnerability in the mobile application(tech.palm.id)may lead to the risk of information leakage.
- CVE-2025-15385Jan 6, 2026risk 0.00cvss —epss 0.00
Insufficient Verification of Data Authenticity vulnerability in TECNO Mobile com.Afmobi.Boomplayer allows Authentication Bypass.This issue affects com.Afmobi.Boomplayer: 7.4.63.
- CVE-2025-3698Apr 16, 2025risk 0.00cvss —epss 0.00
Interface exposure vulnerability in the mobile application (com.transsion.carlcare) may lead to information leakage risk.
- CVE-2024-7697Aug 12, 2024risk 0.00cvss —epss 0.01
Logical vulnerability in the mobile application (com.transsion.carlcare) may lead to user information leakage risks.
- CVE-2024-3701Apr 15, 2024risk 0.00cvss —epss 0.00
The system application (com.transsion.kolun.aiservice) component does not perform an authentication check, which allows attackers to perform malicious exploitations and affect system services.