CVE-2021-43388

2021-12-1418:00:16

mitre

www.cve.org

7.5 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

51.5%

JSON

Unisys Cargo Mobile Application before 1.2.29 uses cleartext to store sensitive information, which might be revealed in a backup. The issue is addressed by ensuring that the allowBackup flag (in the manifest) is False.

References

public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=65