Required CVE Record Information
Description
Amazon Fire OS before 5.3.6.4 allows a man-in-the-middle attack against HTTP requests for "Terms of Use" and Privacy pages.
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 2 Total
- securityfocus.com: 107025 vdb-entryx_transferred
- https://wwws.nightwatchcybersecurity.com/2019/02/07/content-injection-in-amazon-kindles-fireos-cve-2019-7399/ x_transferred