CVE-2023-22429

Summary

Android App 'Wolt Delivery: Food and more' version 4.27.2 and earlier uses hard-coded credentials (API key for an external service), which may allow a local attacker to obtain the hard-coded API key via reverse-engineering the application binary.

Affected Software

VendorProductVersion RangeStatus
WoltWolt Delivery: Food and moreversion 4.27.2 and earlieraffected

Weaknesses

  • Use of hard-coded credentials

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References