2 matches found
CVE-2017-3215
The Milwaukee ONE-KEY Android mobile application uses bearer tokens with an expiration of one year. This bearer token, in combination with a userid can be used to perform user actions...
CVE-2017-3215
CVE-2017-3215 affects the Milwaukee ONE-KEY Android app: it uses a bearer token with a one-year expiration that is stored on the device and, when combined with a user_id, can be used to perform user actions. Threat research notes the token can be reused if the phone is compromised, implying poten...