CVE-2019-20469 Information

Description

An issue was discovered on One2Track 2019-12-08 devices. Confidential information is needlessly stored on the smartwatch. Audio files are stored in .amr format in the audior directory. An attacker who has physical access can retrieve all audio files by connecting via a USB cable.

Reference

https://www.one2track.nl https://seclists.org/fulldisclosure/2024/Jul/14