CVE-2022-34910
4.1
CVSS:3.1/AC:H/AV:L/A:N/C:H/I:N/PR:H/S:U/UI:N
Summary
An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It uses a local database to store data and accounts. However, the password is stored in cleartext. Therefore, an attacker can retrieve the passwords of other users that used the same device.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://www.aremis.com/en_GB/welcome
- https://excellium-services.com/cert-xlm-advisory/CVE-2022-34910
- https://cds.thalesgroup.com/en/tcs-cert/CVE-2022-34910
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.