Filtered by vendor Magic Home Pro Project Subscriptions
Total 1 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2020-27199 1 Magic Home Pro Project 1 Magic Home Pro 2020-12-22 7.5 High
The Magic Home Pro application 1.5.1 for Android allows Authentication Bypass. The security control that the application currently has in place is a simple Username and Password authentication function. Using enumeration, an attacker is able to forge a User specific token without the need for correct password to gain access to the mobile application as that victim user.