CVE-2013-4873

The Yahoo! Tumblr app before 3.4.1 for iOS sends cleartext credentials, which allows remote attackers to obtain sensitive information by sniffing the network.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:N/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 59%
Common Weakness Enumeration
References
http://osvdb.org/95374
http://staff.tumblr.com/post/55648373578/important-security-update-for-iphone-ipad-users
http://www.theregister.co.uk/2013/07/17/tumblr_ios_snafu_fixed/
https://exchange.xforce.ibmcloud.com/vulnerabilities/85823
https://itunes.apple.com/us/app/tumblr/id305343404
http://osvdb.org/95374
http://staff.tumblr.com/post/55648373578/important-security-update-for-iphone-ipad-users
http://www.theregister.co.uk/2013/07/17/tumblr_ios_snafu_fixed/
https://exchange.xforce.ibmcloud.com/vulnerabilities/85823
https://itunes.apple.com/us/app/tumblr/id305343404