VYPR
Unrated severityNVD Advisory· Published Jan 28, 2014· Updated Jun 17, 2026

CVE-2014-0647

CVE-2014-0647

Description

The Starbucks 2.6.1 application for iOS stores sensitive information in plaintext in the Crashlytics log file (/Library/Caches/com.crashlytics.data/com.starbucks.mystarbucks/session.clslog), which allows attackers to discover usernames, passwords, and e-mail addresses via an application that reads session.clslog.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:starbucks:starbucks:2.6.1:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:starbucks:starbucks:2.6.1:*:*:*:*:*:*:*
    • (no CPE)range: = 2.6.1

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.