2 results (0.004 seconds)

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1

smart/calculator/gallerylock/CalculatorActivity.java in the "Photo,Video Locker-Calculator" application through 18 for Android allows attackers to access files via the backdoor 17621762 PIN. smart/calculator/gallerylock/CalculatorActivity.java en la aplicación "Photo,Video Locker-Calculator" hasta la versión 18 para Android permite que los atacantes accedan a archivos mediante la puerta trasera 17621762 PIN. • https://www.ds-security.com/2017/11/16/photovideo-locker-calculator-leak-of-sensitive-files • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

The "Photo,Video Locker-Calculator" application 12.0 for Android has android:allowBackup="true" in AndroidManifest.xml, which allows attackers to obtain sensitive cleartext information via an "adb backup '-f smart.calculator.gallerylock'" command. La aplicación Photo,Video Locker-Calculator 12.0 para Android tiene android:allowBackup="true" en AndroidManifest.xml, lo que permite que atacantes remotos obtengan información sensible en texto claro mediante un comando "adb backup '-f smart.calculator.gallerylock'". • https://www.ds-security.com/2017/11/16/photovideo-locker-calculator-leak-of-sensitive-files • CWE-312: Cleartext Storage of Sensitive Information •