13 matches found
EUVD-2018-9252
Malware in sbrugna...
EUVD-2018-9253
Malware in sbrugna...
Envoy Passport Information Disclosure Vulnerability (CNVD-2019-08355)
Envoy Passport is a visitor management application. An information disclosure vulnerability exists in Envoy Passport versions 2.2.5 iPhone and 2.4.0 Android. A local attacker can exploit this vulnerability to gain access to sensitive information...
Envoy Passport Information Disclosure Vulnerability
Envoy Passport is a visitor management application. An information disclosure vulnerability exists in Envoy Passport versions 2.2.5 iPhone and 2.4.0 Android. A local attacker can exploit this vulnerability to gain access to sensitive information...
CVE-2018-17499
Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of unencrypted data in logs. An attacker could exploit this vulnerability to obtain two API keys, a token and other sensitive information...
CVE-2018-17500
Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of hardcoded OAuth Creds in plaintext. An attacker could exploit this vulnerability to obtain sensitive information...
CVE-2018-17499
Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of unencrypted data in logs. An attacker could exploit this vulnerability to obtain two API keys, a token and other sensitive information...
Hardcoded credentials
Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of hardcoded OAuth Creds in plaintext. An attacker could exploit this vulnerability to obtain sensitive information...
Information disclosure
Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of unencrypted data in logs. An attacker could exploit this vulnerability to obtain two API keys, a token and other sensitive information...
CVE-2018-17500
CVE-2018-17500 details (from provided documents) : Envoy Passport for Android and Envoy Passport for iPhone store hardcoded OAuth credentials in plaintext, enabling a local attacker to obtain sensitive information. The vulnerability is triggered by insecure storage of credentials in the applicati...
CVE-2018-17500
Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of hardcoded OAuth Creds in plaintext. An attacker could exploit this vulnerability to obtain sensitive information...
CVE-2018-17499
CVE-2018-17499 affects Envoy Passport for Android and Envoy Passport for iPhone. Connected CNVD-2019-08356 confirms an information-disclosure vulnerability caused by storing unencrypted data in logs, enabling a local attacker to access sensitive information such as two API keys and a token. Affec...
CVE-2018-17499
Envoy Passport for Android and Envoy Passport for iPhone could allow a local attacker to obtain sensitive information, caused by the storing of unencrypted data in logs. An attacker could exploit this vulnerability to obtain two API keys, a token and other sensitive information...