6 matches found
CVE-2021-26833
Cleartext Storage in a File or on Disk in TimelyBills = 1.7.0 for iOS and versions = 1.21.115 for Android allows attacker who can locally read user's files obtain JWT tokens for user's account due to insufficient cache clearing mechanisms. A threat actor can obtain sensitive user data by decoding...
CVE-2021-26833
Cleartext Storage in a File or on Disk in TimelyBills = 1.7.0 for iOS and versions = 1.21.115 for Android allows attacker who can locally read user's files obtain JWT tokens for user's account due to insufficient cache clearing mechanisms. A threat actor can obtain sensitive user data by decoding...
Design/Logic Flaw
Cleartext Storage in a File or on Disk in TimelyBills = 1.7.0 for iOS and versions = 1.21.115 for Android allows attacker who can locally read user's files obtain JWT tokens for user's account due to insufficient cache clearing mechanisms. A threat actor can obtain sensitive user data by decoding...
CVE-2021-26833
CVE-2021-26833 concerns Cleartext Storage in a File or on Disk in TimelyBills for iOS (<= 1.7.0) and Android (
CVE-2021-26833
Cleartext Storage in a File or on Disk in TimelyBills = 1.7.0 for iOS and versions = 1.21.115 for Android allows attacker who can locally read user's files obtain JWT tokens for user's account due to insufficient cache clearing mechanisms. A threat actor can obtain sensitive user data by decoding...
TimelyBills 安全漏洞
TimelyBills is a mobile application app from TimelyBills, Inc. a financial management software. A security vulnerability exists in TimelyBills for iOS version 1.7.0 and earlier and version 1.21.115 and earlier, which originates from plaintext storage in a file or on disk, and can be exploited by ...