CVE-2017-20200 MEDIUM

CVE-2017-20200: Coinomi cleartext transmission

Vendor N/A
Product Coinomi
Weakness CWE-319 · Cleartext transmission
Published September 23, 2025
Last update September 23, 2025

CVSS base score

6.3/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P

What the vulnerability does

01Description

A vulnerability has been found in Coinomi up to 1.7.6. This issue affects some unknown processing. Such manipulation leads to cleartext transmission of sensitive information. The attack can be launched remotely. This attack is characterized by high complexity. The exploitability is assessed as difficult. The exploit has been disclosed to the public and may be used. The vendor replied with: "(...) there isn't any security implication associated with your findings."

Key dates

02Disclosure timeline

September 23, 2025 CVE published
September 23, 2025 Record updated