Описание
In the PowerSchool Mobile application 1.1.8 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat.
Ссылки
- PatchThird Party Advisory
- PatchThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.1.8 (исключая)
cpe:2.3:a:powerschool:powerschool_mobile:*:*:*:*:*:android:*:*
EPSS
Процентиль: 59%
0.00374
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-532
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
In the PowerSchool Mobile application 1.1.8 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat.
EPSS
Процентиль: 59%
0.00374
Низкий
9.8 Critical
CVSS3
5 Medium
CVSS2
Дефекты
CWE-532