TONE store App version 3.4.2 and earlier contains an issue with unprotected primary channel. Since TONE store App communicates with TONE store website in cleartext, a man-in-the-middle attack may allow an attacker to obtain and/or alter communications of the affected App.
References
Configurations
No configuration.
History
11 Jul 2024, 15:06
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-419 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 3.7 |
11 Jul 2024, 13:05
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
10 Jul 2024, 07:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-07-10 07:15
Updated : 2024-07-11 15:06
NVD link : CVE-2024-39886
Mitre link : CVE-2024-39886
CVE.ORG link : CVE-2024-39886
JSON object : View
Products Affected
No product.
CWE
CWE-419
Unprotected Primary Channel