CVE-2019-13100

2019-07-2215:28:10

mitre

www.cve.org

AI Score

6.3

Confidence

High

EPSS

0.001

Percentile

34.4%

JSON

The Send Anywhere application 9.4.18 for Android stores confidential information insecurely on the system (i.e., in cleartext), which allows a non-root user to find out the username/password of a valid user via /data/data/com.estmob.android.sendanywhere/shared_prefs/sendanywhere_device.xml.

References

pastebin.com/Gdd0Shgr