CRITICAL🇬🇧 English

CVE-2019-17396

CVSS 9.8v3.1pub. 2019-10-15upd. 2024-11-21

In the PowerSchool Mobile application 1.1.8 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Powerschool Mobile

    APP
    Powerschool
    < 1.1.8
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2026-12425MEDIUM5.7ten sam vendor

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in P...

CVE-2019-17396 — CRITICAL 9.8 | CVEbaza.pl