Vulnerabilities (CVE)

Filtered by vendor Ohmibod Subscribe
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-14487 1 Ohmibod 1 Ohmibod Remote 2024-02-04 6.4 MEDIUM 9.1 CRITICAL
The OhMiBod Remote app for Android and iOS allows remote attackers to impersonate users by sniffing network traffic for search responses from the OhMiBod API server and then editing the username, user_id, and token fields in data/data/com.ohmibod.remote2/shared_prefs/OMB.xml.