Описание
The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to obtain user credentials from Shared Preferences and the SQLite database because of insecure data storage.
Ссылки
- Third Party Advisory
- ProductThird Party Advisory
- Third Party Advisory
- ProductThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:taidii:diibear:2.4.0:*:*:*:*:android:*:*
EPSS
Процентиль: 6%
0.00025
Низкий
7.8 High
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-312
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to obtain user credentials from Shared Preferences and the SQLite database because of insecure data storage.
EPSS
Процентиль: 6%
0.00025
Низкий
7.8 High
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-312