CVE-2017-13107 Vulnerability Details
/
/
/
CVE-2017-13107 Metadata Quick Info
CVE Published: 15/08/2018 |
CVE Updated: 05/08/2024 |
CVE Year: 2017
Source: certcc |
Vendor: Live.me |
Product: Live.me
Status : PUBLISHED
CVE-2017-13107 Description
Live.me - live stream video chat, 3.7.20, 2017-11-06, Android application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access this key.
Metrics
CVSS Version: 3.1 |
Base Score: n/a
Vector: n/a
l➤ Exploitability Metrics:
Attack Vector (AV)*
Attack Complexity (AC)*
Privileges Required (PR)*
User Interaction (UI)*
Scope (S)*
l➤ Impact Metrics:
Confidentiality Impact (C)*
Integrity Impact (I)*
Availability Impact (A)*
Weakness Enumeration (CWE)
CWE-ID: CWE-798
CWE Name: CWE-798
Source: Live.me
Common Attack Pattern Enumeration and Classification (CAPEC)
CAPEC-ID:
CAPEC Description: