7 matches found
EUVD-2017-8075
Malware in sbrugna...
DuoLingo TinyCards application for Android Man-in-the-Middle Attack Vulnerability
DuoLingo TinyCards application for Android is a memory workout application based on the Android platform. A security vulnerability exists in versions of the DuoLingo TinyCards application for Android prior to version 1.0, which stems from the program's use of unencrypted HTTP, and can be exploite...
CVE-2017-16905
The DuoLingo TinyCards application before 1.0 for Android has one use of unencrypted HTTP, which allows remote attackers to spoof content, and consequently achieve remote code execution, via a man-in-the-middle attack...
Remote code execution
The DuoLingo TinyCards application before 1.0 for Android has one use of unencrypted HTTP, which allows remote attackers to spoof content, and consequently achieve remote code execution, via a man-in-the-middle attack...
CVE-2017-16905
The DuoLingo TinyCards application before 1.0 for Android has one use of unencrypted HTTP, which allows remote attackers to spoof content, and consequently achieve remote code execution, via a man-in-the-middle attack...
CVE-2017-16905
The DuoLingo TinyCards application before 1.0 for Android has one use of unencrypted HTTP, which allows remote attackers to spoof content, and consequently achieve remote code execution, via a man-in-the-middle attack...
CVE-2017-16905
DuoLingo TinyCards for Android (before 1.0) uses unencrypted HTTP, enabling a man‑in‑the‑middle to spoof content and potentially achieve remote code execution. Root cause: insecure network transport. Impact: content spoofing and possible RCE as stated. Remediation: upgrade to version 1.0 or later...