CVE-2022-0131

Summary

Jimoty App for Android versions prior to 3.7.42 uses a hard-coded API key for an external service. By exploiting this vulnerability, API key for an external service may be obtained by analyzing data in the app.

Affected Software

VendorProductVersion RangeStatus
Jimoty, Inc.Jimoty App for Androidversions prior to 3.7.42affected

Weaknesses

  • Use of Hard-coded credentials

ADP Enrichment

CVE Program Container

Additional References

References