Hard-coded Password Vulnerability in heinekingmedia StashCat for Android

Hard-coded Password Vulnerability in heinekingmedia StashCat for Android

CVE-2017-11129 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

An issue was discovered in heinekingmedia StashCat through 1.7.5 for Android. The keystore is locked with a hard-coded password. Therefore, everyone with access to the keystore can read the content out, for example the private key of the user.

Learn more about our Cis Benchmark Audit For Google Android.