Vulnerabilities (CVE)

Filtered by vendor Mensamax Subscribe
Filtered by product Mensamax
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-15753 1 Mensamax 1 Mensamax 2024-11-21 5.0 MEDIUM 7.5 HIGH
An issue was discovered in the MensaMax (aka com.breustedt.mensamax) application 4.3 for Android. The use of a Hard-coded DES Cryptographic Key allows an attacker who decodes the application to decrypt transmitted data such as the login username and password.
CVE-2018-15752 1 Mensamax 1 Mensamax 2024-11-21 4.3 MEDIUM 8.1 HIGH
An issue was discovered in the MensaMax (aka com.breustedt.mensamax) application 4.3 for Android. Cleartext Transmission of Sensitive Information allows man-in-the-middle attackers to eavesdrop authentication information between the application and the server.