{ "data_type": "CVE", "data_format": "MITRE", "data_version": "4.0", "CVE_data_meta": { "ID": "CVE-2020-36532", "TITLE": "Klapp App Authorization Credentials information disclosure", "REQUESTER": "cna@vuldb.com", "ASSIGNER": "cna@vuldb.com", "STATE": "PUBLIC" }, "generator": "vuldb.com", "affects": { "vendor": { "vendor_data": [ { "vendor_name": "Klapp", "product": { "product_data": [ { "product_name": "App", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] } } ] } }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-200 Information Disclosure" } ] } ] }, "description": { "description_data": [ { "lang": "eng", "value": "A vulnerability has been found in Klapp App and classified as problematic. This vulnerability affects unknown code of the component Authorization. The manipulation leads to information disclosure (Credentials). The attack can be initiated remotely. It is recommended to upgrade the affected app." } ] }, "credit": "Sven Fassbender", "impact": { "cvss": { "version": "3.1", "baseScore": "4.3", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N" } }, "references": { "reference_data": [ { "url": "https://www.modzero.com/modlog/archives/2020/09/07/knapp_daneben_ist_auch_vorbei/index.html", "refsource": "MISC", "name": "https://www.modzero.com/modlog/archives/2020/09/07/knapp_daneben_ist_auch_vorbei/index.html" }, { "url": "https://vuldb.com/?id.160762", "refsource": "MISC", "name": "https://vuldb.com/?id.160762" } ] } }