CVE Field Guide
About Us
CVE-2025-15567
PUBLISHED
Assigner:
Vivo
Reserved:
06.02.2026
Published:
27.02.2026
Updated:
27.02.2026
Insufficient protection mechanisms in the Health Module may lead to partial information disclosure.
Metrics
CVSS 4.0
CVSS Vector:
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N
CVSS Score:
5.1
CVSS score
5.1
Exploitability Metrics
Vulnerable System Impact Metrics
Subsequent System Impact Metrics
Attack Vector
Local
Confidentiality
Low
Confidentiality
None
Attack Complexity
Low
Integrity
None
Integrity
None
Attack Requirements
None
Availability
None
Availability
None
Privileges Required
None
User Interaction
None
CVSS 4.0
Product Status
Vendor
vivo
Product
Health
Versions
Default:
unaffected
Version Versions below 5.3.0.0 is affected
References
https://www.vivo.com/en/support/security-advisory-detail?id=19
Problem Types
CWE-306 Missing Authentication for Critical Function
CWE
Impacts
CAPEC-115 Authentication Bypass