Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:musicshelf:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductMusicshelf (75e18d81-014f-5a42-8956-9602ba345cab)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2024-2365 vulnerable 2026-06-08 06:33:30.943337 Musicshelf SHA-1 PinningTrustManager.java weak password hash
LOW (1.6)
A vulnerability classified as problematic was found in Musicshelf 1.0/1.1 on Android. Affected by this vulnerability is an unknown functionality of the file io\fabric\sdk\android\services\network\PinningTrustManager.java of the component SHA-1 Handler. The manipulation leads to password hash with insufficient computational effort. It is possible to launch the attack on the physical device. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The identifier VDB-256321 was assigned to this vulnerability.
Published: 2024-03-10T23:31:05.050Z
Updated: 2024-08-05T15:43:17.420Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-2364 vulnerable 2026-06-08 06:33:30.941531 Musicshelf Backup androidmanifest.xml backup
LOW (1.8)
A vulnerability classified as problematic has been found in Musicshelf 1.0/1.1 on Android. Affected is an unknown function of the file androidmanifest.xml of the component Backup Handler. The manipulation leads to exposure of backup file to an unauthorized control sphere. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-256320.
Published: 2024-03-10T23:00:08.397Z
Updated: 2025-04-16T15:48:58.608Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.