mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
833 B
833 B
CVE-2016-10702
Description
Pebble Smartwatch devices through 4.3 mishandle UUID storage, which allows attackers to read an arbitrary application's flash storage, and access an arbitrary application's JavaScript instance, by modifying a UUID value within the header of a crafted application binary.
POC
Reference
- https://blog.fletchto99.com/2016/november/pebble-app-sandbox-escape/
- https://blog.fletchto99.com/2016/november/pebble-app-sandbox-escape/
Github
No PoCs found on GitHub currently.