CVE-2017-13104

CVE-2017-13104: Uber Technologies, Inc. UberEATS: Uber for Food Delivery, 1.108.10001, 2017-11-02, iOS application uses a hard-coded key for encryption

Vendor Uber Technologies, Inc.
Product UberEATS: Uber for Food Delivery
Weakness CWE-798 · Hardcoded credentials
Published August 15, 2018
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Uber Technologies, Inc. UberEATS: Uber for Food Delivery, 1.108.10001, 2017-11-02, iOS application uses a hard-coded key for encryption. Data stored using this key can be decrypted by anyone able to access this key.

Key dates

02Disclosure timeline

August 15, 2018 CVE published
August 5, 2024 Record updated