02 Nov Circle with Disney Full of Bugs, Raises Privacy Issues
Last Monday, researchers from Cisco Talos reported their discovery of 23 flaws in Circle with Disney, a monitoring software that helps parents manage their child’s device and Internet usage.
The Talos security team said that the vulnerabilities can give cyber attackers the ability to monitor and even control the devices managed by the software. One of the flaws, CVE-2017-12087, got a CVSS score of 10.0, which indicates the highest level of severity. Another flaw, CVE-2017-2917, was rated at 9.9.
The vulnerabilities are particularly concerning since the app is used for children, but Talos said that the Circle Media Security Team worked closely with them in mitigating the issues and were “exemplary to work with”.