Lavamobiles Flair Z1 Firmware
Approved changes feed: RSS · Atom
cpe:2.3:o:lavamobiles:flair_z1_firmware:-:*:*:*:*:*:*:*
part: o version: - update: *
| Vendor | Lavamobiles (429fbbee-07d7-58d8-9408-7968d117c3d3) |
|---|---|
| Product | Flair Z1 Firmware (3d58f426-82f0-541a-9455-9a3e5fae39d3) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-15356 |
vulnerable | 2026-06-03 14:39:47.590016 |
Details available
The Lava Flair Z1 Android device with a build fingerprint of LAVA/Z1/Z1:8.1.0/O11019/1536680131:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app (versionCode=27, versionName=8.1.0) that allows any app co-located on the device to modify a system property through an exported interface without proper authorization.
Published: 2019-11-14T16:24:59.000Z
Updated: 2024-08-05T00:42:04.029Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-15333 |
vulnerable | 2026-06-03 14:39:47.558974 |
Details available
The Lava Flair Z1 Android device with a build fingerprint of LAVA/Z1/Z1:8.1.0/O11019/1536680131:user/release-keys contains a pre-installed app with a package name of com.android.lava.powersave app (versionCode=400, versionName=v4.0.27) that allows any app co-located on the device to programmatically disable and enable Wi-Fi without the corresponding access permission through an exported interface.
Published: 2019-11-14T16:24:25.000Z
Updated: 2024-08-05T00:42:04.024Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.