Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistJpcertCVELIST:CVE-2020-5667
HistoryNov 06, 2020 - 2:06 a.m.

CVE-2020-5667

2020-11-0602:06:32
jpcert
www.cve.org

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON

Studyplus App for Android v6.3.7 and earlier and Studyplus App for iOS v8.29.0 and earlier use a hard-coded API key for an external service. By exploiting this vulnerability, API key for an external service may be obtained by analyzing data in the app.

CNA Affected

[
  {
    "product": "Studyplus App",
    "vendor": "Studyplus Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "for Android v6.3.7 and earlier, and for iOS v8.29.0 and earlier"
      }
    ]
  }
]

Related

jvn 1
nvd 1
prion 1
cve 1
jvn
jvn
JVN#00414047: Studyplus App uses a hard-coded API key for an external service
2020-11-05 00:00:00
nvd
nvd
CVE-2020-5667
2020-11-06 03:15:17
prion
prion
Hardcoded credentials
2020-11-06 03:15:00
cve
cve
CVE-2020-5667
2020-11-06 03:15:17

5.2 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.6%

JSON
Related for CVELIST:CVE-2020-5667
jvn1nvd1prion1cve1