CVE-2019-14319

Sažetak

The TikTok (formerly Musical.ly) application 12.2.0 for Android and iOS performs unencrypted transmission of images, videos, and likes. This allows an attacker to extract private sensitive information by sniffing network traffic.

Reference

http://p16.muscdn.com/img/musically-maliva-obj/1626792871331845~c5_100x100.jpeg
http://p16.muscdn.com/img/tos-maliva-p-0068/d9e7889f4f2d43028b41947cb0950c32~noop.image
https://github.com/MelroyB/CVE-2019-14319/blob/master/CVE%202019-14319%20.pdf
https://play.google.com/store/apps/details?id=com.zhiliaoapp.musically&hl=en_US

CVSS

Base:	3.3
Impact:	2.9
Exploitability:	6.5

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:A/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

24-08-2020 - 17:37

Objavljeno

04-09-2019 - 20:15