CVE-2016-6548

🗓️ 13 Jul 2018 20:00:29Reported by [email protected]Type

The Zizai Tech Nut mobile app makes insecure HTTP requests, exposing user session tokens to attackers

Reporter	Title	Published	Views	Family All 4
Prion	Design/Logic Flaw	13 Jul 201820:29	–	prion
Cvelist	CVE-2016-6548 Zizai Tech Nut mobile application makes requests using HTTP, which includes the users session token	13 Jul 201820:00	–	cvelist
CVE	CVE-2016-6548	13 Jul 201820:29	–	cve
CERT	Zizai Tech Nut contains multiple vulnerabilities	25 Oct 201600:00	–	cert

Nvd

Node

nutspace nut_mobileMatch-

Source	Link
blog	www.blog.rapid7.com/2016/10/25/multiple-bluetooth-low-energy-ble-tracker-vulnerabilities/
securityfocus	www.securityfocus.com/bid/93877
kb	www.kb.cert.org/vuls/id/402847

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Jul 2018 20:29Current

9.5High risk

Vulners AI Score9.5

CVSS25

CVSS39.8

EPSS0.00987

CWE-200