| 제목 | Shinrays Games Goods Triple - Cat Goods Sort(cats.goods.sort.sorting.games) 1.200 Exposed Cryptographic Key and IV |
|---|
| 설명 | In the Android application cats.goods.sort.sorting.games version 1.200 containing the class com.jh.utils.jRwTX , a hardcoded AES key and IV were discovered. Attackers can extract these static strings through reverse engineering and use them to decrypt server responses, potentially gaining access to sensitive information such as AppsFlyer attribution data. |
|---|
| 원천 | ⚠️ https://www.notion.so/Exposed-Cryptographic-Key-and-IV-in-cats-goods-sort-sorting-games-3262de3f97fb801499ebc3dfd56e232e?source=copy_link |
|---|
| 사용자 | fxizenta (UID 28116) |
|---|
| 제출 | 2026. 03. 17. PM 01:21 (19 날 ago) |
|---|
| 모더레이션 | 2026. 04. 02. PM 01:46 (16 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 354856 [Shinrays Games Goods Triple App 까지 1.200 cats.goods.sort.sorting.games jRwTX.java AES_IV/AES_PASSWORD 약한 암호화] |
|---|
| 포인트들 | 15 |
|---|