Mahavitaran android application 7.50 and prior transmit sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header, MITM or browser history.
References
Link | Resource |
---|---|
https://cvewalkthrough.com/cve-2020-27414-mahavitaran-android-application-insecure-communication-of-sensitive-dat/ | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-12-02T03:08:13
Updated: 2021-12-02T03:08:13
Reserved: 2020-10-21T00:00:00
Link: CVE-2020-27414
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-12-02T04:15:06.677
Modified: 2021-12-03T17:04:51.117
Link: CVE-2020-27414
JSON object: View
Redhat Information
No data.
CWE