CVE-2019-17398

In the Dark Horse Comics application 1.3.21 for Android, token information (equivalent to the username and password) is stored in the log during authentication, and may be available to attackers via logcat.
References
Link Resource
https://pastebin.com/5ZDDCqgL Exploit Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:darkhorse:dark_horse_comics:1.3.21:*:*:*:*:android:*:*

Information

Published : 2019-10-15 09:15

Updated : 2019-10-17 01:32


NVD link : CVE-2019-17398

Mitre link : CVE-2019-17398

Products Affected
No products.
CWE
CWE-532

Insertion of Sensitive Information into Log File