2019-10-15 20:46:24
mitre
PUBLISHED
In the Orbitz application 19.31.1 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat.