CVE-2016-1520

2017-04-21T20:59:00
ID CVE-2016-1520
Type cve
Reporter cve@mitre.org
Modified 2018-10-09T19:59:00

Description

The Grandstream Wave app 1.0.1.26 and earlier for Android does not use HTTPS when retrieving update information, which might allow man-in-the-middle attackers to execute arbitrary code via a crafted application.