Published:
2024/05/10
Last Updated:
2024/05/10
Information from i-plug inc.
Vulnerability ID:JVN#83405304
Title:"OfferBox" App uses a hard-coded secret key
Status:Vulnerable
This is a statement from the vendor itself with no modification by JPCERT/CC.
The fix for this vulnerability was implemented in version 3.0.0 and this version is no longer available as of April 9, 2024.
At this time, this vulnerability does not affect our customers and does not require any action on their part.
Furthermore, no instances of this vulnerability being exploited have been reported so far.