First published: Tue May 31 2022(Updated: )
Hardcoded admin token in SoundBar apps in Linkplay SDK 1.00 allows remote attackers to gain admin privilege access in linkplay antifactory
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Linkplay Sound Bar | =1.0 | |
iPhone OS | ||
Android |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-28605 is classified as high due to the hardcoded admin token allowing unauthorized access.
To fix CVE-2022-28605, update the Linkplay Sound Bar software to a version that removes the hardcoded admin token.
CVE-2022-28605 affects version 1.0 of Linkplay Sound Bar applications using the Linkplay SDK.
CVE-2022-28605 can be exploited by remote attackers to gain admin privileges on devices using the vulnerable Linkplay SDK.
Currently, there is no known workaround for CVE-2022-28605 other than applying the necessary software updates.