Skip to main content

Google I O 2017

1 CVEs product

Monthly

CVE-2017-9045 MEDIUM POC This Month

The Google I/O 2017 application before 5.1.4 for Android downloads multiple .json files from http://storage.googleapis.com without SSL, which makes it easier for man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Google Information Disclosure Google I O 2017
NVD
CVSS 3.0
5.9
EPSS
0.1%
EPSS 0% CVSS 5.9
MEDIUM POC This Month

The Google I/O 2017 application before 5.1.4 for Android downloads multiple .json files from http://storage.googleapis.com without SSL, which makes it easier for man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Google Information Disclosure Google I O 2017
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy