CVE-2020-35456

2021-03-1714:56:44

mitre

www.cve.org

taidii diibear

android application

excessive logging

private chat messages

media files

logcat

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

30.2%

JSON

The Taidii Diibear Android application 2.4.0 and all its derivatives allow attackers to view private chat messages and media files via logcat because of excessive logging.

References

github.com/galapogos/Taidii-Diibear-Vulnerabilities/

play.google.com/store/apps/details?id=com.taidii.diibear&hl=en_US&gl=US