01642 06 11 11 Arrange Call

Hard-coded API Key Vulnerability in Jimoty App for Android

CVE-2022-0131 · LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CVE-2022-0131

Jimoty App for Android versions prior to 3.7.42 uses a hard-coded API key for an external service. By exploiting this vulnerability, API key for an external service may be obtained by analyzing data in the app.

Learn more about our Cis Benchmark Audit For Google Android.