← back
CVE-2017-13107

Live.me - live stream video chat, 3.7.20, 2017-11-06, Android application uses a hard-coded key for encryption

EPSS 1.0%CWE-798
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 1.0%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
15 Aug 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Live.me - live stream video chat, 3.7.20, 2017-11-06, Android application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access this key.
Affected products
Live.me · Live.me

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.kb.cert.org/vuls/id/787952