Clear-text Transmission of User Credentials in Kickbase Bundesliga Manager App

CVE-2017-14711 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

The Kickbase GmbH "Kickbase Bundesliga Manager" app before 2.2.1 -- aka kickbase-bundesliga-manager/id678241305 -- for iOS is vulnerable to a credentials leak due to transmitting a username and password in cleartext from client to server during registration and authentication.

Learn more about our Cis Benchmark Audit For Apple Ios.