Critical severity9.8NVD Advisory· Published Jul 13, 2018· Updated Jun 17, 2026
CVE-2016-6548
CVE-2016-6548
Description
The Zizai Tech Nut mobile app makes requests via HTTP instead of HTTPS. These requests contain the user's authenticated session token with the URL. An attacker can capture these requests and reuse the session token to gain full access the user's account.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: N/A
Patches
Vulnerability mechanics
References
3- blog.rapid7.com/2016/10/25/multiple-bluetooth-low-energy-ble-tracker-vulnerabilities/nvdExploitThird Party Advisory
- www.kb.cert.org/vuls/id/402847nvdThird Party AdvisoryUS Government Resource
- www.securityfocus.com/bid/93877nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.