2 matches found
CVE-2017-13107
CVE-2017-13107 concerns the Android Live.me app (version 3.7.20, 2017-11-06) which uses a hard-coded encryption key. The vulnerability arises because data encrypted with this key can be decrypted by anyone who has access to the key, exposing stored user data. The connected sources confirm the app...
Android and iOS apps contain multiple vulnerabilities
Overview Android apps, including those pre-installed on some mobile devices, contain multiple vulnerabilities. All of these vulnerabilities were reported by Kryptowire. Vulnerabilities in pre-installed apps were presented at DEF CON 26 and a set of different vulnerabilities were previously...