PT-2019-8559 · Isaac Mizrahi · Isaac Mizrahi Smartwatch Mobile App

Publicado

2019-03-27

Atualizado

2019-03-29

CVE-2017-2748

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Isaac Mizrahi Smartwatch mobile app (affected versions not specified)

Description A potential security issue has been identified in early versions of the app, related to the use of insecure HTTP transactions during login. It is noted that HP has no access to customer data as a result of this issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-254

Identificadores relacionados

CVE-2017-2748

Produtos afetados

Isaac Mizrahi Smartwatch Mobile App

PT-2019-8559 · Isaac Mizrahi · Isaac Mizrahi Smartwatch Mobile App

CVE-2017-2748

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3