2 matches found
CVE-2020-8989
In the Voatz application 2020-01-01 for Android, the amount of data transmitted during a single voter's vote depends on the different lengths of the metadata across the available voting choices, which makes it easier for remote attackers to discover this voter's choice by sniffing the network. Fo...
CVE-2020-8989
The CVE-2020-8989 entry concerns the Voatz Android app (2020-01-01). The vulnerability is that the amount of data transmitted for a voter’s choice correlates with the metadata lengths across voting options, enabling an observer to infer a voter’s choice by sniffing network traffic. The root cause...