| tiêu đề | albertHealth Albert Health(albert.health) 1.7.3 Google Cloud Service Account Key Exposure |
|---|
| Mô tả | The Android application albert.health version 1.7.3 embeds a full Google Cloud service account key file in its assets. An attacker can extract this file via reverse engineering and use it to authenticate to Google Cloud Platform. With the stolen credentials, the attacker gains unauthorized access to cloud resources, including listing projects, accessing Cloud Storage buckets, reading and downloading files, uploading new files, and more. |
|---|
| Nguồn | ⚠️ https://www.notion.so/Google-Cloud-Service-Account-Key-Exposure-Leading-to-Unauthorized-Data-Access-in-albert-health-3192de3f97fb800d8ebddef9f259223b?source=copy_link |
|---|
| Người dùng | fxizenta (UID 28116) |
|---|
| Đệ trình | 04/03/2026 16:09 (cách đây 3 các tháng) |
|---|
| Kiểm duyệt | 16/03/2026 07:06 (12 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 351208 [Albert Sağlık Hizmetleri ve Ticaret Albert Health đến 1.7.3 trên Android Google Cloud Service Account Key service-account.json nâng cao đặc quyền] |
|---|
| điểm | 17 |
|---|