CVE-2024-3701

The system application (com.transsion.kolun.aiservice) component does not perform an authentication check, which allows attackers to perform malicious exploitations and affect system services.
Configurations

Configuration 1 (hide)

cpe:2.3:o:tecno:hios:13.0.0:*:*:*:*:*:*:*

History

17 Jun 2025, 20:58

Type Values Removed Values Added
First Time Tecno hios
Tecno
CPE cpe:2.3:o:tecno:hios:13.0.0:*:*:*:*:*:*:*
References () https://security.tecno.com/SRC/blogdetail/236?lang=en_US - () https://security.tecno.com/SRC/blogdetail/236?lang=en_US - Vendor Advisory
References () https://security.tecno.com/SRC/securityUpdates?type=SA - () https://security.tecno.com/SRC/securityUpdates?type=SA - Vendor Advisory

21 Nov 2024, 09:30

Type Values Removed Values Added
References () https://security.tecno.com/SRC/blogdetail/236?lang=en_US - () https://security.tecno.com/SRC/blogdetail/236?lang=en_US -
References () https://security.tecno.com/SRC/securityUpdates?type=SA - () https://security.tecno.com/SRC/securityUpdates?type=SA -

21 Aug 2024, 03:15

Type Values Removed Values Added
Summary (en) The system application (com.transsion.kolun.aiservice) component does not perform an authentication check, which allows attackers to perform malicious exploitations and affect system services. (en) The system application (com.transsion.kolun.aiservice) component does not perform an authentication check, which allows attackers to perform malicious exploitations and affect system services.
CWE CWE-306

01 Aug 2024, 13:56

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CWE CWE-287

15 Apr 2024, 09:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-04-15 08:15

Updated : 2025-06-17 20:58


NVD link : CVE-2024-3701

Mitre link : CVE-2024-3701

CVE.ORG link : CVE-2024-3701


JSON object : View

Products Affected

tecno

  • hios
CWE
CWE-306

Missing Authentication for Critical Function

CWE-287

Improper Authentication