Описание
The TikTok (formerly Musical.ly) application 12.2.0 for Android and iOS performs unencrypted transmission of images, videos, and likes. This allows an attacker to extract private sensitive information by sniffing network traffic.
The TikTok (formerly Musical.ly) application 12.2.0 for Android and iOS performs unencrypted transmission of images, videos, and likes. This allows an attacker to extract private sensitive information by sniffing network traffic.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2019-14319
- https://github.com/MelroyB/CVE-2019-14319/blob/master/CVE%202019-14319%20.pdf
- https://play.google.com/store/apps/details?id=com.zhiliaoapp.musically&hl=en_US
- http://p16.muscdn.com/img/musically-maliva-obj/1626792871331845~c5_100x100.jpeg
- http://p16.muscdn.com/img/tos-maliva-p-0068/d9e7889f4f2d43028b41947cb0950c32~noop.image
EPSS
Процентиль: 80%
0.01452
Низкий
CVE ID
Связанные уязвимости
CVSS3: 6.5
nvd
больше 6 лет назад
The TikTok (formerly Musical.ly) application 12.2.0 for Android and iOS performs unencrypted transmission of images, videos, and likes. This allows an attacker to extract private sensitive information by sniffing network traffic.
EPSS
Процентиль: 80%
0.01452
Низкий