CVE-2018-6018

2018-01-2415:00:00

mitre

www.cve.org

8.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.1%

JSON

Fixed sizes of HTTPS responses in Tinder iOS app and Tinder Android app allow an attacker to extract private sensitive information by sniffing network traffic.

References

www.checkmarx.com/2018/01/23/tinder-someone-may-watching-swipe-2/

www.wired.com/story/tinder-lack-of-encryption-lets-strangers-spy-on-swipes/