The following links were updated on our target scope, please review and let us know if there is anything that you can find! As a friendly reminder, these targets carry our highest tier of rewards and have the focus areas outlined below.
|Priority||iOS, Android||Web, Desktop, API|
- android:debuggable=" true" in Android Manifest
- android:allowBackup set to true (by default)
- Information disclosure via Toast messages
- Information leakage in backgrounding snapshots
- Information leakage in keystroke caching