Hard-coded Encryption Key Vulnerability in UberEATS iOS Application

Hard-coded Encryption Key Vulnerability in UberEATS iOS Application

CVE-2017-13104 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Uber Technologies, Inc. UberEATS: Uber for Food Delivery, 1.108.10001, 2017-11-02, iOS application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access this key.

Learn more about our Cis Benchmark Audit For Apple Ios.