Unencrypted Code Loading Vulnerability in Siemens SPCanywhere Android Application
CVE-2015-1597 · MEDIUM Severity
AV:N/AC:M/AU:N/C:P/I:P/A:P
The Siemens SPCanywhere application for Android does not use encryption during the loading of code, which allows man-in-the-middle attackers to execute arbitrary code by modifying the client-server data stream.
Learn more about our Cis Benchmark Audit For Google Android.