CVE-2019-17398

Name of the Vulnerable Software and Affected Versions Dark Horse Comics application version 1.3.21

Description The application stores token information, equivalent to the username and password, in the log during authentication. This information may be accessible to attackers via logcat, potentially allowing them to obtain sensitive user credentials.

Recommendations For version 1.3.21, consider restricting access to logcat output to minimize the risk of exploitation. As a temporary workaround, avoid using the application for sensitive transactions until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.