PT-2016-4835 · Lenovo · Shareit

Ivan Huertas

Publicado

2016-01-26

Atualizado

2018-10-09

CVE-2016-1489

CVSS v3.1

8.0

Alta

Vetor

AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Lenovo SHAREit versions prior to 3.2.0 for Windows Lenovo SHAREit versions prior to 3.5.48 ww for Android

Description The issue allows remote attackers to obtain sensitive information or conduct man-in-the-middle attacks. This is possible because files are transferred in cleartext, making it easier for attackers to intercept data by sniffing the network or via unspecified vectors.

Recommendations For Windows versions prior to 3.2.0, update to version 3.2.0 or later to resolve the issue. For Android versions prior to 3.5.48 ww, update to version 3.5.48 ww or later to resolve the issue.

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-254CWE-200

Identificadores relacionados

CVE-2016-1489

Produtos afetados

Shareit

PT-2016-4835 · Lenovo · Shareit

CVE-2016-1489

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7