High severity7.5NVD Advisory· Published Oct 27, 2017· Updated Jun 17, 2026
CVE-2017-15581
CVE-2017-15581
Description
In the "Diary with lock" (aka WriteDiary) application 4.72 for Android, neither HTTPS nor other encryption is used for transmitting data, despite the documentation that the product is intended for "a personal journal of ... secrets and feelings," which allows remote attackers to obtain sensitive information by sniffing the network during LoginActivity or NoteActivity execution.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3cpe:2.3:a:writediary:diary_with_lock:4.72:*:*:*:*:android:*:*+ 1 more
- cpe:2.3:a:writediary:diary_with_lock:4.72:*:*:*:*:android:*:*
- (no CPE)range: = 4.72
- Range: = 4.72
Patches
Vulnerability mechanics
References
2- 1337sec.blogspot.de/2017/10/auditing-writediarycom-cve-2017-15581.htmlnvdIssue TrackingThird Party Advisory
- gist.github.com/anonymous/603b89f864a71426042b167cab557efanvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.