CVE-2019-18800
Viber (up to 11.7.0.5) vulnerable: not all Viber protocol traffic is encrypted. TCP port 4244, packet 9, offset 0x14 exposes cleartext device model, OS version, IMSI, and 20 bytes of udid. An attacker could rewrite the victim's udid (viber_udid) and, after a reg/PIN flow, seize the account. Docum...