← back
CVE-2017-13101

Musical.ly Inc., musical.ly - your video social network, 6.1.6, 2017-10-03, iOS application uses a hard-coded key for encryption

EPSS 1.0%CWE-798
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 1.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
15 Aug 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Musical.ly Inc., musical.ly - your video social network, 6.1.6, 2017-10-03, iOS application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access this key.
Affected products
Musical.ly Inc. · musical.ly

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.kb.cert.org/vuls/id/787952