Android Spoon application version 7.11.1 to 8.6.0 uses hard-coded credentials, which may allow a local attacker to retrieve the hard-coded API key when the application binary is reverse-engineered. This API key may be used for unexpected access of the associated service.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: jpcert

Published: 2024-01-23T23:12:43.141Z

Updated: 2024-08-23T19:50:10.518Z

Reserved: 2024-01-17T07:05:36.873Z

Link: CVE-2024-23453

cve-icon Vulnrichment

Updated: 2024-08-01T23:06:24.138Z

cve-icon NVD

Status : Modified

Published: 2024-01-24T00:15:08.327

Modified: 2024-11-21T08:57:44.420

Link: CVE-2024-23453

cve-icon Redhat

No data.