Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2020-13637
- EPSS 0.08%
- Veröffentlicht 17.06.2020 17:15:10
- Zuletzt bearbeitet 21.11.2024 05:01:38
An issue was discovered in the stashcat app through 3.9.2 for macOS, Windows, Android, iOS, and possibly other platforms. It stores the client_key, the device_id, and the public key for end-to-end encryption in cleartext, enabling an attacker (by cop...
- EPSS 0.42%
- Veröffentlicht 18.05.2020 05:15:14
- Zuletzt bearbeitet 21.11.2024 05:00:43
An issue was discovered in the stashcat app through 3.9.1 for macOS, Windows, Android, iOS, and possibly other platforms. The GET method is used with client_key and device_id data in the query string, which allows attackers to obtain sensitive inform...
7.5
CVE-2017-11132
- EPSS 0.11%
- Veröffentlicht 01.08.2017 14:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
An issue was discovered in heinekingmedia StashCat before 1.5.18 for Android. No certificate pinning is implemented; therefore the attacker could issue a certificate for the backend and the application would not notice it.
1