9 matches found
CVE-2024-38480
"Piccoma" App for Android and iOS versions prior to 6.20.0 uses a hard-coded API key for an external service, which may allow a local attacker to obtain the API key. Note that the users of the app are not directly affected by this vulnerability...
CVE-2024-38480
"Piccoma" App for Android and iOS versions prior to 6.20.0 uses a hard-coded API key for an external service, which may allow a local attacker to obtain the API key. Note that the users of the app are not directly affected by this vulnerability...
CVE-2024-38480
CVE-2024-38480 concerns the Piccoma App for Android and iOS prior to version 6.20.0, which contains a hard-coded API key for an external service. The root cause is the hard-coded key embedded in the app, enabling a local attacker to potentially obtain the API key. Per the sources, users of the ap...
CVE-2024-38480
"Piccoma" App for Android and iOS versions prior to 6.20.0 uses a hard-coded API key for an external service, which may allow a local attacker to obtain the API key. Note that the users of the app are not directly affected by this vulnerability...
CVE-2024-38480
"Piccoma" App for Android and iOS versions prior to 6.20.0 uses a hard-coded API key for an external service, which may allow a local attacker to obtain the API key. Note that the users of the app are not directly affected by this vulnerability...
PT-2024-28026 · Unknown · Piccoma App
Name of the Vulnerable Software and Affected Versions: Piccoma App versions prior to 6.20.0 Description: The issue concerns the use of a hard-coded API key for an external service in the Piccoma App, which could potentially allow a local attacker to obtain the API key. It is noted that the users ...
"Piccoma" App uses a hard-coded API key for an external service
Overview "Piccoma" App for Android and "Piccoma" App for iOS provided by Kakao piccoma Corp. use a hard-coded API key for an external service CWE-798. Yoshihito Sakai of BroadBand Security, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Securit...
Kakao Piccoma Security Breach
Kakao Piccoma is a mobile application for reading manga by the Japanese company Kakao Piccoma. A security vulnerability exists in Kakao Piccoma versions prior to 6.20.0, which stems from the use of hard-coded API keys...
JVN#01073312: "Piccoma" App uses a hard-coded API key for an external service
"Piccoma" App for Android and "Piccoma" App for iOS provided by Kakao piccoma Corp. use a hard-coded API key for an external service CWE-798. Impact Data in the app may be analyzed and API key for an external service may be obtained. Note that the users of the app are not directly affected by thi...