Vulnerabilities > CVE-2022-39043 - Insecure Storage of Sensitive Information vulnerability in Juiker 4.6.0607.1

CVSS 2.4 - LOW

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

low complexity

juiker

CWE-922

NVD

Published: 2023-03-27

Updated: 2023-07-21

Summary

Juiker app stores debug logs which contains sensitive information to mobile external storage. An unauthenticated physical attacker can access these files to acquire partial user information such as personal contacts.

Vulnerable Configurations

Part	Description	Count
Application	Juiker Juiker Juiker 4.6.0607.1	1

Common Weakness Enumeration (CWE)

CWE-922 - Insecure Storage of Sensitive Information

References

https://www.twcert.org.tw/tw/cp-132-6922-4a37a-1.html