Qardio: Security Vulnerabilities
The Qardio Arm iOS application exposes sensitive data such as usernames
and passwords in a plist file. This allows an attacker to log in to
production-level development accounts and access an engineering backdoor
in the application. The engineering backdoor allows the attacker to
send hex-based commands over a UI-based terminal.
CVSS Score
6.2
EPSS Score
0.0
Published
2025-02-13