Lucene search

K

Heinekingmedia Security Vulnerabilities

cve
cve

CVE-2020-13637

An issue was discovered in the stashcat app through 3.9.2 for macOS, Windows, Android, iOS, and possibly other platforms. It stores the client_key, the device_id, and the public key for end-to-end encryption in cleartext, enabling an attacker (by copying or having access to the local storage...

7.5CVSS

7.5AI Score

0.001EPSS

2020-06-17 05:15 PM
23
2
cve
cve

CVE-2020-13129

An issue was discovered in the stashcat app through 3.9.1 for macOS, Windows, Android, iOS, and possibly other platforms. The GET method is used with client_key and device_id data in the query string, which allows attackers to obtain sensitive information by reading web-server...

7.2CVSS

6.8AI Score

0.001EPSS

2020-05-18 05:15 AM
37
cve
cve

CVE-2017-11132

An issue was discovered in heinekingmedia StashCat before 1.5.18 for Android. No certificate pinning is implemented; therefore the attacker could issue a certificate for the backend and the application would not notice...

7.5CVSS

7.4AI Score

0.001EPSS

2017-08-01 02:29 PM
20