← back
CVE-2017-5239

CVE-2017-5239

EPSS 0.5%
Due to a lack of standard encryption when transmitting sensitive information over the internet to a centralized monitoring service, the Eview EV-07S GPS Tracker discloses personally identifying information, such as GPS data and IMEI numbers, to any man-in-the-middle (MitM) listener.
Affected products
Eview · EV-07S GPS Tracker

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://community.rapid7.com/community/infosec/blog/2017/03/27/r7-2015-28-multiple-eview-ev-07s-gps-tracker-vulnerabilitieshttp://www.securityfocus.com/bid/97194