CVE-2019-14808 - CERT CVE
ID CVE-2019-14808
Sažetak An issue was discovered in the RENPHO application 3.0.0 for iOS. It transmits JSON data unencrypted to a server without an integrity check, if a user changes personal data in his profile tab (e.g., exposure of his birthday) or logs into his account (i.e., exposure of credentials).
Reference
CVSS
Base: 4.0
Impact: 4.9
Exploitability:4.9
Pristup
VektorSloženostAutentikacija
NETWORK HIGH NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL PARTIAL NONE
CVSS vektor AV:N/AC:H/Au:N/C:P/I:P/A:N
Zadnje važnije ažuriranje 21-07-2021 - 11:39
Objavljeno 09-10-2019 - 16:15