This page lists publicly disclosed CVE vulnerabilities affecting megafeis bofei_dbd\+ (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-45636 | An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker to unlock model(s) without authorization via arbitrary API requests. | [email protected] | 8.1 | 0.69% | 2023-03-21 | 2026-06-17 |
| CVE-2022-45637 | An insecure password reset issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 service via insecure expiry mechanism. | [email protected] | 9.8 | 0.77% | 2023-03-21 | 2026-06-17 |
| CVE-2022-45635 | An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows attacker to gain access to sensitive account information via insecure password policy. | [email protected] | 7.5 | 0.78% | 2023-03-21 | 2026-06-17 |