The application was signed using a key length less than or equal to 1024 bits, making it potentially vulnerable to forged digital signatures. An attacker could forge the same digital signature of the app after maliciously modifying the app.
References
Link | Resource |
---|---|
https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100861 | Vendor Advisory |
Configurations
History
03 Nov 2022, 17:14
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:hcltech:verse:*:*:*:*:*:android:*:* | |
First Time |
Hcltech verse
Hcltech |
|
CWE | CWE-326 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
References | (CONFIRM) https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0100861 - Vendor Advisory |
01 Nov 2022, 19:40
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-01 18:15
Updated : 2023-12-10 14:35
NVD link : CVE-2020-4099
Mitre link : CVE-2020-4099
CVE.ORG link : CVE-2020-4099
JSON object : View
Products Affected
hcltech
- verse
CWE
CWE-326
Inadequate Encryption Strength