Security Advisory

CVE-2019-11384

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-04-22 20:57:40

Last updated 2024-08-04 22:48:09

Assigner mitre

State PUBLISHED

Description

The Zalora application 6.15.1 for Android stores confidential information insecurely on the system (i.e. plain text), which allows a non-root user to find out the username/password of a valid user via /data/data/com.zalora.android/shared_prefs/login_data.xml.

← Browse all CVEs View on cve.org ↗