CVE-2019-14319

2019-09-0419:57:59

mitre

www.cve.org

6.1 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

54.9%

JSON

The TikTok (formerly Musical.ly) application 12.2.0 for Android and iOS performs unencrypted transmission of images, videos, and likes. This allows an attacker to extract private sensitive information by sniffing network traffic.

References

p16.muscdn.com/img/musically-maliva-obj/1626792871331845~c5_100x100.jpeg

p16.muscdn.com/img/tos-maliva-p-0068/d9e7889f4f2d43028b41947cb0950c32~noop.image

github.com/MelroyB/CVE-2019-14319/blob/master/CVE%202019-14319%20.pdf

play.google.com/store/apps/details?id=com.zhiliaoapp.musically&hl=en_US