2 matches found
CVE-2019-13098
The user password via the registration form of TronLink Wallet 2.2.0 is stored in the log when the class CreateWalletTwoActivity is called. Other authenticated users can read it in the log later. The logged data can be read using Logcat on the device. When using platforms prior to Android 4.1 Jel...
CVE-2019-13098
The CVE describes a password disclosure in TronLink Wallet 2.2.0 where the user password is logged during CreateWalletTwoActivity, allowing other authenticated apps/users with access to the device log (Logcat) to read it. The issue is tied to logging sensitive data and, on Android versions before...