Lucene search
TaidiiDiibear2.4.0
3 matches found
CVE-2020-35455
The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to obtain user credentials from Shared Preferences and the SQLite database because of insecure data storage.
7.8CVSS7.4AI score0.00025EPSS
CVE-2020-35454
The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to obtain user credentials from an Android backup because of insecure application configuration.
6.8CVSS6.5AI score0.00028EPSS
CVE-2020-35456
The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to view private chat messages and media files via logcat because of excessive logging.
5.5CVSS5.4AI score0.00104EPSS