Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2017-15997
HistoryOct 29, 2017 - 5:00 p.m.

CVE-2017-15997

2017-10-2917:00:00
mitre
www.cve.org
1
cve-2017-15997
nq contacts backup & restore
rc4 encryption
android
user credentials
preferences xml file

AI Score

7.8

Confidence

High

EPSS

0

Percentile

12.6%

JSON

In the β€œNQ Contacts Backup & Restore” application 1.1 for Android, RC4 encryption is used to secure the user password locally stored in shared preferences. Because there is a static RC4 key, an attacker can gain access to user credentials more easily by leveraging access to the preferences XML file.

Related

nvd 1
prion 1
cve 1
nvd
nvd
CVE-2017-15997
2017-10-29 17:29:00
prion
prion
Design/Logic Flaw
2017-10-29 17:29:00
cve
cve
CVE-2017-15997
2017-10-29 17:29:00

AI Score

7.8

Confidence

High

EPSS

0

Percentile

12.6%

JSON
Related for CVELIST:CVE-2017-15997
nvd1prion1cve1