Sensitive Information Disclosure in OSRAM Lightify Pro (before 2016-07-26) via Screenshot Reading

Sensitive Information Disclosure in OSRAM Lightify Pro (before 2016-07-26) via Screenshot Reading

CVE-2016-5059 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

OSRAM SYLVANIA Osram Lightify Pro before 2016-07-26 allows attackers to obtain sensitive information by reading screenshots under /private/var/mobile/Containers/Data/Application.

Learn more about our Mobile App Penetration Testing.