{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/60450?format=json","vulnerability_id":"VCID-arg9-t5df-7bcq","summary":"Unauthorized access vulnerability in the mobile application (com.transsion.phoenix) can lead to the leakage of user information.","aliases":[{"alias":"CVE-2024-11206"}],"fixed_packages":[],"affected_packages":[],"references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-11206","reference_id":"","reference_type":"","scores":[{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57507","published_at":"2026-06-14T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57385","published_at":"2026-06-11T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57502","published_at":"2026-06-12T12:55:00Z"},{"value":"0.00344","scoring_system":"epss","scoring_elements":"0.57516","published_at":"2026-06-13T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-11206"},{"reference_url":"https://security.tecno.com/SRC/blogdetail/340?lang=en_US","reference_id":"340?lang=en_US","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-14T21:27:10Z/"}],"url":"https://security.tecno.com/SRC/blogdetail/340?lang=en_US"},{"reference_url":"https://security.tecno.com/SRC/securityUpdates","reference_id":"securityUpdates","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:T/P:M/B:A/M:M/D:T/2024-11-14T21:27:10Z/"}],"url":"https://security.tecno.com/SRC/securityUpdates"}],"weaknesses":[{"cwe_id":359,"name":"Exposure of Private Personal Information to an Unauthorized Actor","description":"The product does not properly prevent a person's private, personal information from being accessed by actors who either (1) are not explicitly authorized to access the information or (2) do not have the implicit consent of the person about whom the information is collected."}],"exploits":[],"severity_range_score":"7.5 - 7.5","exploitability":null,"weighted_severity":null,"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-arg9-t5df-7bcq"}