CVE-2017-10818

2017-08-0416:00:00

jpcert

www.cve.org

AI Score

9.3

Confidence

High

EPSS

0.002

Percentile

60.2%

JSON

MaLion for Windows and Mac versions 3.2.1 to 5.2.1 uses a hardcoded cryptographic key which may allow an attacker to alter the connection settings of Terminal Agent and spoof the Relay Service.

CNA Affected

[
  {
    "product": "MaLion for Windows and Mac",
    "vendor": "Intercom, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "3.2.1 to 5.2.1"
      }
    ]
  }
]

References

www.intercom.co.jp/information/2017/0801.html

jvn.jp/en/vu/JVNVU91587298/index.html