Fixed-size HTTPS responses in Tinder apps enable information extraction through network traffic sniffing

Fixed-size HTTPS responses in Tinder apps enable information extraction through network traffic sniffing

CVE-2018-6018 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

Fixed sizes of HTTPS responses in Tinder iOS app and Tinder Android app allow an attacker to extract private sensitive information by sniffing network traffic.

Learn more about our Cis Benchmark Audit For Apple Ios.