CVE-2019-14319 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	6.5 MEDIUM	ADJACENT_NETWORK	LOW	NONE	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 80%

Affected Products (NVD)

Vendor	Product	Version
tiktok	tiktok	12.2.0
tiktok	tiktok	12.3.0
tiktok	tiktok	12.4.0
tiktok	tiktok	12.5.0
tiktok	tiktok	12.6.0
tiktok	tiktok	12.6.1
tiktok	tiktok	12.7.0
tiktok	tiktok	12.8.0

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-319 - Cleartext Transmission of Sensitive Information
The software transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

References

http://p16.muscdn.com/img/musically-maliva-obj/1626792871331845~c5_100x100.jpeg

http://p16.muscdn.com/img/tos-maliva-p-0068/d9e7889f4f2d43028b41947cb0950c32~noop.image

https://github.com/MelroyB/CVE-2019-14319/blob/master/CVE%202019-14319%20.pdf

https://play.google.com/store/apps/details?id=com.zhiliaoapp.musically&hl=en_US

http://p16.muscdn.com/img/musically-maliva-obj/1626792871331845~c5_100x100.jpeg

http://p16.muscdn.com/img/tos-maliva-p-0068/d9e7889f4f2d43028b41947cb0950c32~noop.image

https://github.com/MelroyB/CVE-2019-14319/blob/master/CVE%202019-14319%20.pdf

https://play.google.com/store/apps/details?id=com.zhiliaoapp.musically&hl=en_US