CVE-2021-43512

An issue was discovered in FlightRadar24 v8.9.0, v8.10.0, v8.10.2, v8.10.3, v8.10.4 for Android, allows attackers to cause unspecified consequences due to being able to decompile a local application and extract their API keys.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:flightradar24:flightradar24_flight_tracker:8.9.0:*:*:*:*:android:*:*
cpe:2.3:a:flightradar24:flightradar24_flight_tracker:8.10.0:*:*:*:*:android:*:*
cpe:2.3:a:flightradar24:flightradar24_flight_tracker:8.10.2:*:*:*:*:android:*:*
cpe:2.3:a:flightradar24:flightradar24_flight_tracker:8.10.3:*:*:*:*:android:*:*
cpe:2.3:a:flightradar24:flightradar24_flight_tracker:8.10.4:*:*:*:*:android:*:*

History

21 Nov 2024, 06:29

Type Values Removed Values Added
References () https://medium.com/%40janmejayaswainofficial/advisory-of-cve-2021-43512-5e54e6a93101 - () https://medium.com/%40janmejayaswainofficial/advisory-of-cve-2021-43512-5e54e6a93101 -
References () https://www.flightradar24.com - Vendor Advisory () https://www.flightradar24.com - Vendor Advisory
References () https://www.flightradar24.com.aa - Broken Link () https://www.flightradar24.com.aa - Broken Link

07 Nov 2023, 03:39

Type Values Removed Values Added
References
  • {'url': 'https://medium.com/@janmejayaswainofficial/advisory-of-cve-2021-43512-5e54e6a93101', 'name': 'https://medium.com/@janmejayaswainofficial/advisory-of-cve-2021-43512-5e54e6a93101', 'tags': ['Third Party Advisory'], 'refsource': 'MISC'}
  • () https://medium.com/%40janmejayaswainofficial/advisory-of-cve-2021-43512-5e54e6a93101 -

Information

Published : 2022-06-02 14:15

Updated : 2024-11-21 06:29


NVD link : CVE-2021-43512

Mitre link : CVE-2021-43512

CVE.ORG link : CVE-2021-43512


JSON object : View

Products Affected

flightradar24

  • flightradar24_flight_tracker
CWE
CWE-922

Insecure Storage of Sensitive Information