exploitDog

GHSA-73xm-9g5x-69f4

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

The "Photo,Video Locker-Calculator" application 12.0 for Android has android:allowBackup="true" in AndroidManifest.xml, which allows attackers to obtain sensitive cleartext information via an "adb backup '-f smart.calculator.gallerylock'" command.

The "Photo,Video Locker-Calculator" application 12.0 for Android has android:allowBackup="true" in AndroidManifest.xml, which allows attackers to obtain sensitive cleartext information via an "adb backup '-f smart.calculator.gallerylock'" command.

Ссылки

EPSS

Процентиль: 47%

0.0024

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-312

Связанные уязвимости

CVE-2017-16835

CVSS3: 7.5

nvd

почти 8 лет назад

The "Photo,Video Locker-Calculator" application 12.0 for Android has android:allowBackup="true" in AndroidManifest.xml, which allows attackers to obtain sensitive cleartext information via an "adb backup '-f smart.calculator.gallerylock'" command.

EPSS

Процентиль: 47%

0.0024

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-312