Hard-Coded API and Secret Keys in EPSON iPrint Application for Android
CVE-2018-14901
7.5HIGH
What is CVE-2018-14901?
The EPSON iPrint application for Android version 6.6.3 has been found to contain hard-coded API and secret keys for multiple cloud services, including Dropbox, Box, Evernote, and OneDrive. This security flaw can potentially lead to unauthorized access to user accounts and sensitive data, making it critical for users to be aware of the implications of this vulnerability and implement necessary security measures.
