CVE-2023-36621

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "https://seclists.org/fulldisclosure/2023/Jul/12", "name": "https://seclists.org/fulldisclosure/2023/Jul/12", "tags": ["Mailing List", "Third Party Advisory"], "refsource": "MISC"}, {"url": "https://sec-consult.com/blog/detail/the-hidden-costs-of-parental-control-apps/", "name": "https://sec-consult.com/blog/detail/the-hidden-costs-of-parental-control-apps/", "tags": ["Third Party Advisory"], "refsource": "MISC"}, {"url": "https://useboomerang.com/", "name": "https://useboomerang.com/", "tags": ["Product"], "refsource": "MISC"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "An issue was discovered in the Boomerang Parental Control application through 13.83 for Android. The child can use Safe Mode to remove all restrictions temporarily or uninstall the application without the parents noticing."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-862"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2023-36621", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV3": {"cvssV3": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 5.2, "exploitabilityScore": 3.9}}, "publishedDate": "2023-11-03T04:15Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:nationaledtech:boomerang:*:*:*:*:*:android:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "13.83"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2023-11-09T21:55Z"}