Insecure Data Storage in Olive Tree FTP Server Application 1.32 for Android

Insecure Data Storage in Olive Tree FTP Server Application 1.32 for Android

CVE-2018-11544 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

The Olive Tree Ftp Server application 1.32 for Android has Insecure Data Storage because a username and password are stored in the /data/data/com.theolivetree.ftpserver/shared_prefs/com.theolivetree.ftpserver_preferences.xml file as the prefUsername and prefUserpass strings.

Learn more about our Cis Benchmark Audit For Google Android.