Musicshelf
Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:musicshelf:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Musicshelf (75e18d81-014f-5a42-8956-9602ba345cab) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-2365 |
vulnerable | 2026-06-08 06:33:30.943337 |
Musicshelf SHA-1 PinningTrustManager.java weak password hash
LOW (1.6)
A vulnerability classified as problematic was found in Musicshelf 1.0/1.1 on Android. Affected by this vulnerability is an unknown functionality of the file io\fabric\sdk\android\services\network\PinningTrustManager.java of the component SHA-1 Handler. The manipulation leads to password hash with insufficient computational effort. It is possible to launch the attack on the physical device. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used. The identifier VDB-256321 was assigned to this vulnerability.
Published: 2024-03-10T23:31:05.050Z
Updated: 2024-08-05T15:43:17.420Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-2364 |
vulnerable | 2026-06-08 06:33:30.941531 |
Musicshelf Backup androidmanifest.xml backup
LOW (1.8)
A vulnerability classified as problematic has been found in Musicshelf 1.0/1.1 on Android. Affected is an unknown function of the file androidmanifest.xml of the component Backup Handler. The manipulation leads to exposure of backup file to an unauthorized control sphere. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-256320.
Published: 2024-03-10T23:00:08.397Z
Updated: 2025-04-16T15:48:58.608Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.