CVE-2017-3214
HIGHMilwaukee ONE-KEY - Cleartext Storage of Sensitive Information in APK Binary
Title source: llmDescription
The Milwaukee ONE-KEY Android mobile application stores the master token in plaintext in the apk binary.
References (1)
Core 1
Core References
Third Party Advisory x_refsource_misc
https://duo.com/blog/bug-hunting-drilling-into-the-internet-of-things-iot
Scores
CVSS v3
7.5
EPSS
0.0063
EPSS Percentile
45.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-312
CWE-522
Status
published
Products (2)
Milwaukee Tool/ONE-KEY
unspecified
milwaukeetool/one-key
Published
Jun 20, 2017
Tracked Since
Feb 18, 2026