CVE-2024-36554

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Feb 6, 2025

Updated: Feb 10, 2025

CWE ID 497

Summary

CVE-2024-36554 is a vulnerability affecting the Forever KidsWatch Call Me KW-50 R36_YDR_A3PW_GM7S_V1.0_2019_07_15_16.19.24_cob_h and Forever KidsWatch Call Me KW-60 R36CW_YDE_S4_A29_2_V1.0_2023.05.24_22.49.44_cob_b devices. Malicious users can exploit this issue by sending an SMS message to the device, which in turn reveals sensitive information to the attacker. This vulnerability poses a significant privacy risk, as the device's details, including its unique identifier, can be accessed without authorization. The specific impact and exploit details are not disclosed in the provided information.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/wMLh8R
https://www.cve.org/CVERecord?id=CVE-2024-36554
https://nvd.nist.gov/vuln/detail/CVE-2024-36554

Back to Vulnerability Database

CVE-2024-36554

CVSS 3.1 Score 9.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations