CVE-2019-7399

HIGH

Amazon Fire OS <5.3.6.4 - Info Disclosure

Title source: llm

Description

Amazon Fire OS before 5.3.6.4 allows a man-in-the-middle attack against HTTP requests for "Terms of Use" and Privacy pages.

References (2)

Scores

CVSS v3 7.4
EPSS 0.0024
EPSS Percentile 47.0%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Classification

CWE
CWE-346
Status published

Affected Products (1)

amazon/fire_os < 5.3.6.4

Timeline

Published Feb 17, 2019
Tracked Since Feb 18, 2026