CVE Published: 23/01/2024 |
CVE Updated: 23/08/2024 |
CVE Year: 2024 Source: jpcert |
Vendor: Spoon Radio Japan Inc. |
Product: Android Spoon application Status : PUBLISHED
CVE-2024-23453 Description
Android Spoon application version 7.11.1 to 8.6.0 uses hard-coded credentials, which may allow a local attacker to retrieve the hard-coded API key when the application binary is reverse-engineered. This API key may be used for unexpected access of the associated service.