In version 6.1.0.19 and prior of Wink Labsβs Wink - Smart Home Android app, the OAuth token used by the app to authorize user access is not stored in an encrypted and secure manner.
[
{
"product": "Wink - Smart Home",
"vendor": "Wink Labs Inc",
"versions": [
{
"status": "affected",
"version": "6.1.0.19 and prior"
}
]
}
]