CVE-2018-6018

2018-01-2415:00:00

mitre

www.cve.org

AI Score

8.6

Confidence

High

EPSS

0.002

Percentile

54.0%

JSON

Fixed sizes of HTTPS responses in Tinder iOS app and Tinder Android app allow an attacker to extract private sensitive information by sniffing network traffic.

References

www.checkmarx.com/2018/01/23/tinder-someone-may-watching-swipe-2/

www.wired.com/story/tinder-lack-of-encryption-lets-strangers-spy-on-swipes/