Security Advisory – Vulnerability Analysis of eWeLink APP Local Log Containing Partial Device Information
Title Release Date 2023/12/20 Abstract In eWeLink APP version 3.x, during the device pairing process, some device‘s information is logged locally. When attackers gain file permissions by connecting to the user’s phone, it leads to the leakage of some device information. Affected Product eWeLink APP Affected Version eWeLink APP 3.x Impact Attackers can exploit this …