Описание
The Sleipnir Mobile application before 2.1.0 and Sleipnir Mobile Black Edition application before 2.1.0 for Android do not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.1.0 (исключая)Версия до 2.1.0 (исключая)
Одно из
cpe:2.3:a:fenrir-inc:sleipnir_mobile:*:*:*:*:-:android:*:*
cpe:2.3:a:fenrir-inc:sleipnir_mobile:*:*:*:*:black:android:*:*
EPSS
Процентиль: 73%
0.00742
Низкий
5 Medium
CVSS2
Дефекты
CWE-200
Связанные уязвимости
github
больше 3 лет назад
The Sleipnir Mobile application before 2.1.0 and Sleipnir Mobile Black Edition application before 2.1.0 for Android do not properly implement the WebView class, which allows remote attackers to obtain sensitive information via a crafted application.
EPSS
Процентиль: 73%
0.00742
Низкий
5 Medium
CVSS2
Дефекты
CWE-200