2 matches found
CVE-2019-14808
CVE-2019-14808 affects the RENPHO iOS app (version 3.0.0). The client transmits JSON data to the server unencrypted and without an integrity check when users change personal data in their profile or log in, exposing credentials and personal data (e.g., birthday). CVSS v3.1 base score 6.8 (ATT&CK/...
RENPHO 3.0.0 Information Disclosure
Hello together, we’ve found the following vulnerability below. Affected software: RENPHO V3.0.0 iOS App Vulnerability type: Missing Encryption and Integrity Check of Sensitive Data Vulnerable version: Renpho Mobile Application V3.0.0 for iOS Vulnerable component: Client app, transmitting data to...