CRITICAL🇬🇧 English

CVE-2017-5250

CVSS 9.8v3.0pub. 2018-02-22upd. 2024-11-21

In version 1.9.7 and prior of Insteon's Insteon for Hub Android app, the OAuth token used by the app to authorize user access is not stored in an encrypted and secure manner.

oryginał EN
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Insteon For Hub

    APP
    Insteon
    ≤ 1.9.7
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2017-16258CRITICAL9.9ten sam vendor

Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel ...

CVE-2017-16259CRITICAL9.9ten sam vendor

Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel ...

CVE-2017-16256CRITICAL9.9ten sam vendor

Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel ...

CVE-2017-16257CRITICAL9.9ten sam vendor

Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel ...

CVE-2017-16260CRITICAL9.9ten sam vendor

Multiple exploitable buffer overflow vulnerabilities exist in the PubNub message handler for the "cc" channel ...