PT-2018-7268 · Lenovo · Lenovo Help
Publicado
2018-04-19
·
Atualizado
2018-05-22
·
CVE-2017-3776
CVSS v3.1
7.5
Alta
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Lenovo Help Android mobile app versions prior to 6.1.2.0327
Description:
The issue concerns the transmission of information over an insecure channel. Specifically, the app allowed data to be sent over HTTP, which could be intercepted by others observing the channel, potentially exposing the information.
Recommendations:
For versions prior to 6.1.2.0327, update to version 6.1.2.0327 or later to ensure information is transmitted securely.
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Lenovo Help