Primary

Context

Tecno Tranfacmode Permission Bypass Vulnerability Allowing Intent-Based Access to ADB Debugging

Vulnerability

A permission bypass vulnerability has been identified in the Tecno Tranfacmode application, specifically within the MainActivity component. This vulnerability allows third-party apps to access ADB debugging functionality by constructing intents, without any user interaction. The issue arises from the lack of proper permission controls in the application.

Impact

Exploitation of this vulnerability allows third-party applications to access ADB debugging features, potentially leading to unauthorized actions or changes on the device.

Remediation

This vulnerability has been fixed. Users can refer to the TECNO Security Update page for details on the latest security patches for their device model.

Added: Dec 17, 2025, 7:17 AM

Updated: Dec 17, 2025, 10:17 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

4.7

remediation

0.0

relevance

1.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

4.7

remediation

0.0

relevance

1.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tecno Tranfacmode Permission Bypass Vulnerability Allowing Intent-Based Access to ADB Debugging

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating