Exposed Dangerous Method or Function

CVE-2025-3698

High

7.5/10

Summary

Interface exposure vulnerability in the mobile application (com.transsion.carlcare) may lead to information leakage risk.

Attack Complexity: LOW
Attack Vector: NETWORK
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: NONE
Confidentiality Impact: HIGH
Availability Impact: NONE

CWE-749 - Exposed Dangerous Method or Function

The software provides an Applications Programming Interface (API) or similar interface for interaction with external actors, but the interface includes a dangerous method or function that is not properly restricted.

References

Advisory Timeline

Published Apr 16, 2025

Exposed Dangerous Method or Function

CVE-2025-3698

Summary

CWE-749 - Exposed Dangerous Method or Function

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS