CVE-2025-21615

AAT allows data exfiltration by other apps installed on the same device

CVSS 5.5 MEDIUMEPSS 0.2%CWE-200

AAT (Another Activity Tracker) is a GPS-tracking application for tracking sportive activities, with emphasis on cycling. Versions lower than v1.26 of AAT are vulnerable to data exfiltration from malicious apps installed on the same device.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Productos afectados

bailuk · AAT

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://github.com/bailuk/AAT/security/advisories/GHSA-pwpm-x58v-px5c