Incorrect Permission Assignment for Critical Resource

CVE-2020-14263

Low

3.9/10

"HCL Traveler Companion is vulnerable to an iOS weak cryptographic process vulnerability via the included MobileIron AppConnect SDK"

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.