exploitDog

GHSA-q799-h455-4hvj

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.8

Описание

The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to obtain user credentials from Shared Preferences and the SQLite database because of insecure data storage.

The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to obtain user credentials from Shared Preferences and the SQLite database because of insecure data storage.

Ссылки

EPSS

Процентиль: 6%

0.00025

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-522

Связанные уязвимости

CVE-2020-35455

CVSS3: 7.8

nvd

почти 5 лет назад

The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to obtain user credentials from Shared Preferences and the SQLite database because of insecure data storage.

EPSS

Процентиль: 6%

0.00025

Низкий

7.8 High

CVSS3

CVE ID

Дефекты

CWE-522