VYPR
High severity7.5NVD Advisory· Published Oct 27, 2017· Updated Jun 17, 2026

CVE-2017-15581

CVE-2017-15581

Description

In the "Diary with lock" (aka WriteDiary) application 4.72 for Android, neither HTTPS nor other encryption is used for transmitting data, despite the documentation that the product is intended for "a personal journal of ... secrets and feelings," which allows remote attackers to obtain sensitive information by sniffing the network during LoginActivity or NoteActivity execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:a:writediary:diary_with_lock:4.72:*:*:*:*:android:*:*+ 1 more
    • cpe:2.3:a:writediary:diary_with_lock:4.72:*:*:*:*:android:*:*
    • (no CPE)range: = 4.72
  • Range: = 4.72

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.