1. Home
  2. Mapping Frameworks
  3. CVE Home
  4. n/a

CVE CVE-2017-14487 Mappings

The OhMiBod Remote app for Android and iOS allows remote attackers to impersonate users by sniffing network traffic for search responses from the OhMiBod API server and then editing the username, user_id, and token fields in data/data/com.ohmibod.remote2/shared_prefs/OMB.xml.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name
CVE-2017-14487 n/a uncategorized T1552 Unsecured Credentials
CVE-2017-14487 n/a uncategorized T1566 Phishing
CVE-2017-14487 n/a uncategorized T1204 User Execution
CVE-2017-14487 n/a uncategorized T0880 Loss of Safety