CVE-2010-4214

The Wells Fargo Mobile application 1.1 for Android stores a username and password, along with account balances, in cleartext, which might allow physically proximate attackers to obtain sensitive information by reading application data.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 52%
VendorProductVersion
wellsfargowells_fargo_mobile
1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://news.cnet.com/8301-27080_3-20021874-245.html
http://online.wsj.com/article/SB10001424052748703805704575594581203248658.html
http://viaforensics.com/appwatchdog/wells-fargo-android.html
http://news.cnet.com/8301-27080_3-20021874-245.html
http://online.wsj.com/article/SB10001424052748703805704575594581203248658.html
http://viaforensics.com/appwatchdog/wells-fargo-android.html