Show filters
7 Total Results
Displaying 1-7 of 7
Sort by:
Attacker Value
Unknown
CVE-2025-24849
Disclosure Date: February 28, 2025 (last updated March 01, 2025)
Lack of encryption in transit for cloud infrastructure facilitating potential for sensitive data manipulation or exposure.
0
Attacker Value
Unknown
CVE-2025-24843
Disclosure Date: February 28, 2025 (last updated March 01, 2025)
Insecure file retrieval process that facilitates potential for file manipulation to affect product stability and confidentiality, integrity, authenticity, and attestation of stored data.
0
Attacker Value
Unknown
CVE-2025-24318
Disclosure Date: February 28, 2025 (last updated March 01, 2025)
Cookie policy is observable via built-in browser tools. In the presence of XSS, this could lead to full session compromise.
0
Attacker Value
Unknown
CVE-2025-24316
Disclosure Date: February 28, 2025 (last updated March 01, 2025)
The Dario Health Internet-based server infrastructure is vulnerable due to exposure of development environment details, which could lead to unsafe functionality.
0
Attacker Value
Unknown
CVE-2025-23405
Disclosure Date: February 28, 2025 (last updated March 01, 2025)
Unauthenticated log effects metrics gathering incident response efforts and potentially exposes risk of injection attacks (ex log injection).
0
Attacker Value
Unknown
CVE-2025-20060
Disclosure Date: February 28, 2025 (last updated March 01, 2025)
An attacker could expose cross-user personal identifiable information (PII) and personal health information transmitted to the Android device via the Dario Health application database.
0
Attacker Value
Unknown
CVE-2025-20049
Disclosure Date: February 28, 2025 (last updated March 01, 2025)
The Dario Health portal service application is vulnerable to XSS, which could allow an attacker to obtain sensitive information.
0
