← Back

Duolingo

duolingo

1 CVE • 1 product

Products (1)

Click to collapse
Toggle
Tinycards
tinycards
1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2017-16905
1Duolingo
1Tinycards
Nov 21, 2024
Jan 5, 2018
N/A· v4
8.1 HIGH· v3
6.8 MEDIUM· v2
The DuoLingo TinyCards application before 1.0 for Android has one use of unencrypted HTTP, which allows remote attackers to spoof content, and consequently achieve remote code execution, via a man-in-the-middle attack.