An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It uses a local database to store data and accounts. However, the password is stored in cleartext. Therefore, an attacker can retrieve the passwords of other users that used the same device.
References
Link | Resource |
---|---|
https://excellium-services.com/cert-xlm-advisory/CVE-2022-34910 | Third Party Advisory |
https://www.aremis.com/en_GB/welcome | Not Applicable |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-02-27T00:00:00
Updated: 2023-02-27T00:00:00
Reserved: 2022-07-01T00:00:00
Link: CVE-2022-34910
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-02-27T13:15:10.267
Modified: 2023-03-07T16:54:23.597
Link: CVE-2022-34910
JSON object: View
Redhat Information
No data.
CWE