Aremis 4 Nomads@* Security Vulnerabilities and Issues — Aremis 4 Nomads@* CVE List

Lucene search

AremisAremis 4 Nomads*

3 matches found

CVE•added 2023/02/27 1:15 p.m.•36 views

CVE-2022-34908

An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It possesses an authentication mechanism; however, some features do not require any token or cookie in a request. Therefore, an attacker may send a simple HTTP request to the right endpoint, and obtain authorization ...

8.2CVSS7.6AI score0.00102EPSS

CVE•added 2023/02/27 1:15 p.m.•36 views

CVE-2022-34909

An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It allows SQL Injection, by which an attacker can bypass authentication and retrieve data that is stored in the database.

9.1CVSS9.5AI score0.00036EPSS

CVE•added 2023/02/27 1:15 p.m.•36 views

CVE-2022-34910

An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It uses a local database to store data and accounts. However, the password is stored in cleartext. Therefore, an attacker can retrieve the passwords of other users that used the same device.

5.5CVSS5.5AI score0.00009EPSS