VYPR
Vendor

Aremis

Products
2
CVEs
3
Across products
3
Status
Private

Products

2

Recent CVEs

3
  • CVE-2022-34908HigFeb 27, 2023
    risk 0.53cvss 8.2epss 0.01

    An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It possesses an authentication mechanism; however, some features do not require any token or cookie in a request. Therefore, an attacker may send a simple HTTP request to the right endpoint, and…

  • CVE-2022-34909HigFeb 27, 2023
    risk 0.50cvss 7.7epss 0.00

    An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It allows SQL Injection, by which an attacker can bypass authentication and retrieve data that is stored in the database.

  • CVE-2022-34910MedFeb 27, 2023
    risk 0.27cvss 4.1epss 0.00

    An issue was discovered in the A4N (Aremis 4 Nomad) application 1.5.0 for Android. It uses a local database to store data and accounts. However, the password is stored in cleartext. Therefore, an attacker can retrieve the passwords of other users that used the same device.