Unrated severityNVD Advisory· Published Apr 18, 2011· Updated Apr 29, 2026

CVE-2011-1717

Description

Skype for Android stores sensitive user data without encryption in sqlite3 databases that have weak permissions, which allows local applications to read user IDs, contacts, phone numbers, date of birth, instant message logs, and other private information.

Affected products

Skype/Skype For Android
cpe:2.3:a:skype:skype_for_android:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.androidpolice.com/2011/04/14/exclusive-vulnerability-in-skype-for-android-is-exposing-your-name-phone-number-chat-logs-and-a-lot-more/nvdExploit
blogs.skype.com/security/2011/04/privacy_vulnerability_in_skype.htmlnvd
www.securitytracker.com/idnvd
www.theregister.co.uk/2011/04/15/skype_for_android_vulnerable/nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000