移动应用安全检测报告:
安全基线评分
安全基线评分 49/100
综合风险等级
风险等级评定
- A
- B
- C
- F
漏洞与安全项分布(%)
隐私风险
9
检测到的第三方跟踪器数量
检测结果分布
高危安全漏洞
6
中危安全漏洞
35
安全提示信息
12
已通过安全项
4
重点安全关注
0
高危安全漏洞 应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。
应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/accor/app/tools/k.java, line(s) 53 com/cardinalcommerce/dependencies/internal/nimbusds/jose/crypto/impl/AESCBC.java, line(s) 42,42 com/legic/mobile/sdk/h0/c.java, line(s) 214 com/legic/mobile/sdk/j0/b.java, line(s) 36,37 com/legic/mobile/sdk/l0/c.java, line(s) 200 com/legic/mobile/sdk/x/a.java, line(s) 23,24
高危安全漏洞 应用程序在加密算法中使用ECB模式。ECB模式是已知的弱模式,因为它对相同的明文块[UNK]产生相同的密文
应用程序在加密算法中使用ECB模式。ECB模式是已知的弱模式,因为它对相同的明文块[UNK]产生相同的密文 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-block-cipher-mode Files: com/clarisite/mobile/d/AbstractC0190b.java, line(s) 24,31 com/clarisite/mobile/d/AbstractC6165b.java, line(s) 24,31 com/clarisite/mobile/d/C0189a.java, line(s) 27,30 com/clarisite/mobile/d/C6164a.java, line(s) 27,30 com/legic/mobile/sdk/j0/a.java, line(s) 29 com/legic/mobile/sdk/j0/b.java, line(s) 33 com/legic/mobile/sdk/x/a.java, line(s) 21 com/lockup/lockuplibrary/b.java, line(s) 16 com/lockup/lockuplibrary/y.java, line(s) 25
高危安全漏洞 该文件是World Readable。任何应用程序都可以读取文件
该文件是World Readable。任何应用程序都可以读取文件 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#testing-local-storage-for-sensitive-data-mstg-storage-1-and-mstg-storage-2 Files: com/assaabloy/mobilekeys/api/internal/a/f.java, line(s) 73 com/assaabloy/mobilekeys/api/internal/f/e.java, line(s) 86 com/assaabloy/mobilekeys/api/internal/n/g.java, line(s) 222 com/assaabloy/mobilekeys/api/internal/n/j.java, line(s) 300
高危安全漏洞 如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击
如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-7 Files: com/cardinalcommerce/shared/cs/userinterfaces/ChallengeHTMLView.java, line(s) 494,12,13
高危安全漏洞 默认情况下,调用Cipher.getInstance("AES")将返回AES ECB模式。众所周知,ECB模式很弱,因为它导致相同明文块的密文相同
默认情况下,调用Cipher.getInstance("AES")将返回AES ECB模式。众所周知,ECB模式很弱,因为它导致相同明文块的密文相同
https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-block-cipher-mode
Files:
com/utc/fs/trframework/O.java, line(s) 68
高危安全漏洞 应用程序包含隐私跟踪程序
此应用程序有多个9隐私跟踪程序。跟踪器可以跟踪设备或用户,是终端用户的隐私问题。
中危安全漏洞 Activity-Alias (com.accor.app.splashscreen.view.SplashScreenActivitySilver) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity-Alias (com.accor.app.splashscreen.view.SplashScreenActivityGold) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity-Alias (com.accor.app.splashscreen.view.SplashScreenActivityPlatinum) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity-Alias (com.accor.app.splashscreen.view.SplashScreenActivityDiamond) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity-Alias (com.accor.app.splashscreen.view.SplashScreenActivityLimitless) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity-Alias (com.accor.app.splashscreen.view.SplashScreenActivityMetalClassic) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity-Alias (com.accor.app.splashscreen.view.SplashScreenActivityMetalSilver) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity-Alias (com.accor.app.splashscreen.view.SplashScreenActivityMetalGold) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity-Alias (com.accor.app.splashscreen.view.SplashScreenActivityMetalPlatinum) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity-Alias (com.accor.app.splashscreen.view.SplashScreenActivityMetalDiamond) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity-Alias (com.accor.app.splashscreen.view.SplashScreenActivityMetalLimitless) 未被保护。
[android:exported=true] 发现 Activity-Alias与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity (com.accor.app.startdispatcher.view.StartDispatcherActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity (com.accor.app.oidc.OidcRedirectUriHandlerActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Broadcast Receiver (com.accor.deal.presentation.dealdetails.receiver.DealReminderReceiver) 未被保护。
[android:exported=true] 发现 Broadcast Receiver与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Activity (com.accor.digitalkey.feature.digitalkey.view.DigitalKeyActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Service (com.google.android.gms.auth.api.signin.RevocationBoundService) 受权限保护, 但是应该检查权限的保护级别。
Permission: com.google.android.gms.auth.api.signin.permission.REVOCATION_NOTIFICATION [android:exported=true] 发现一个 Service被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危安全漏洞 Broadcast Receiver (com.google.firebase.iid.FirebaseInstanceIdReceiver) 受权限保护, 但是应该检查权限的保护级别。
Permission: com.google.android.c2dm.permission.SEND [android:exported=true] 发现一个 Broadcast Receiver被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危安全漏洞 Activity (com.google.android.gms.tagmanager.TagManagerPreviewActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Broadcast Receiver (com.batch.android.BatchPushMessageReceiver) 受权限保护, 但是应该检查权限的保护级别。
Permission: com.google.android.c2dm.permission.SEND [android:exported=true] 发现一个 Broadcast Receiver被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危安全漏洞 Activity (androidx.compose.ui.tooling.PreviewActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 Service (androidx.work.impl.background.systemjob.SystemJobService) 受权限保护, 但是应该检查权限的保护级别。
Permission: android.permission.BIND_JOB_SERVICE [android:exported=true] 发现一个 Service被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危安全漏洞 Broadcast Receiver (androidx.work.impl.diagnostics.DiagnosticsReceiver) 受权限保护, 但是应该检查权限的保护级别。
Permission: android.permission.DUMP [android:exported=true] 发现一个 Broadcast Receiver被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危安全漏洞 Broadcast Receiver (androidx.profileinstaller.ProfileInstallReceiver) 受权限保护, 但是应该检查权限的保护级别。
Permission: android.permission.DUMP [android:exported=true] 发现一个 Broadcast Receiver被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危安全漏洞 Service (com.assaabloy.mobilekeys.api.hce.HceService) 受权限保护, 但是应该检查权限的保护级别。
Permission: android.permission.BIND_NFC_SERVICE [android:exported=true] 发现一个 Service被共享给了设备上的其他应用程序,因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此,应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险,一个恶意应用程序可以请求并获得这个权限,并与该组件交互。如果它被设置为签名,只有使用相同证书签名的应用程序才能获得这个权限。
中危安全漏洞 Activity (com.assaabloy.mobilekeys.api.network.NfcTagNetworkReaderActivity) 未被保护。
[android:exported=true] 发现 Activity与设备上的其他应用程序共享,因此可被设备上的任何其他应用程序访问。
中危安全漏洞 应用程序使用不安全的随机数生成器
应用程序使用不安全的随机数生成器 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-random-number-generators Files: com/appsflyer/internal/AFb1gSDK.java, line(s) 19 com/batch/android/e/l0.java, line(s) 6 com/cardinalcommerce/a/AbstractC1465u6.java, line(s) 11 com/cardinalcommerce/a/AbstractC1493w6.java, line(s) 5 com/cardinalcommerce/a/AbstractC6051u6.java, line(s) 12 com/cardinalcommerce/a/AbstractC6079w6.java, line(s) 5 com/cardinalcommerce/a/C5827e5.java, line(s) 5 com/cardinalcommerce/a/R2.java, line(s) 4 com/distil/protection/android/Protection.java, line(s) 31 com/distil/protection/android/setImportantForContentCapture.java, line(s) 3 com/qualtrics/digital/SamplingUtil.java, line(s) 3 com/threatmetrix/TrustDefender/internal/bfffff.java, line(s) 5 com/threatmetrix/TrustDefender/internal/pupuup.java, line(s) 6 com/threatmetrix/TrustDefender/internal/rooooo.java, line(s) 5 com/threatmetrix/TrustDefender/internal/uouuuu.java, line(s) 6 io/opentelemetry/android/SessionId.java, line(s) 7 io/opentelemetry/sdk/internal/AndroidFriendlyRandomHolder.java, line(s) 3 io/opentelemetry/sdk/internal/RandomSupplier.java, line(s) 3 io/opentelemetry/sdk/metrics/internal/exemplar/ExemplarReservoir.java, line(s) 10 io/opentelemetry/sdk/metrics/internal/exemplar/RandomFixedSizeExemplarReservoir.java, line(s) 11 io/opentelemetry/sdk/trace/RandomIdGenerator.java, line(s) 6 nl/dionsegijn/konfetti/core/emitter/e.java, line(s) 7
中危安全漏洞 IP地址泄露
IP地址泄露 Files: com/assaabloy/mobilekeys/api/BuildConfig.java, line(s) 4 com/cardinalcommerce/a/A1.java, line(s) 26 com/cardinalcommerce/a/BCDSAPublicKey.java, line(s) 28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,47,48,49,57,56,58,59,60,61,27,50,51,52,53,54,55 com/cardinalcommerce/a/C0.java, line(s) 28 com/cardinalcommerce/a/C1365n3.java, line(s) 28,29,47,14,38,10,32,33,34,31,44,46,45,19,51,24,36,15,35,12,26,30,37,39,50,41,27,21,23,20,52,17,18,16,40,49,22,11,25,42,43,48,13 com/cardinalcommerce/a/C5951n3.java, line(s) 28,29,47,14,38,10,32,33,34,31,44,46,45,19,51,24,36,15,35,12,26,30,37,39,50,41,27,21,23,20,52,17,18,16,40,49,22,11,25,42,43,48,13 com/cardinalcommerce/a/D1.java, line(s) 146,175,167,111,112,113,114,115,116,204,205 com/cardinalcommerce/a/DSASigner.java, line(s) 577,578,579,590,600,591,580,585,586,587,588,589,592,581,624,576,593,583,584,582,632,631,599,594,595,596,597,598 com/cardinalcommerce/a/H3.java, line(s) 21,41 com/cardinalcommerce/a/I0.java, line(s) 17,44 com/cardinalcommerce/a/InterfaceC1179a5.java, line(s) 4,5 com/cardinalcommerce/a/InterfaceC1217c9.java, line(s) 60 com/cardinalcommerce/a/InterfaceC1263g.java, line(s) 10,11 com/cardinalcommerce/a/InterfaceC1292i0.java, line(s) 13,17 com/cardinalcommerce/a/InterfaceC1311j5.java, line(s) 67,41,46,47 com/cardinalcommerce/a/InterfaceC1321k1.java, line(s) 4 com/cardinalcommerce/a/InterfaceC1335l1.java, line(s) 309,310,311,306,307,308 com/cardinalcommerce/a/InterfaceC1421r4.java, line(s) 17,18,21,22,23,24,19,20,25,26,27,28,11 com/cardinalcommerce/a/InterfaceC1487w0.java, line(s) 25,21,16,17,18,12,19,13,14,15,20,23,22,24,37 com/cardinalcommerce/a/InterfaceC5765a5.java, line(s) 5,6 com/cardinalcommerce/a/InterfaceC5803c9.java, line(s) 62 com/cardinalcommerce/a/InterfaceC5849g.java, line(s) 12,13 com/cardinalcommerce/a/InterfaceC5878i0.java, line(s) 15,19 com/cardinalcommerce/a/InterfaceC5897j5.java, line(s) 71,45,50,51 com/cardinalcommerce/a/InterfaceC5907k1.java, line(s) 5 com/cardinalcommerce/a/InterfaceC5921l1.java, line(s) 311,312,313,308,309,310 com/cardinalcommerce/a/InterfaceC6007r4.java, line(s) 18,19,22,23,24,25,20,21,26,27,28,29,12 com/cardinalcommerce/a/InterfaceC6073w0.java, line(s) 25,21,16,17,18,12,19,13,14,15,20,23,22,24,37 com/cardinalcommerce/a/O1.java, line(s) 22,15,23,24,25,16,17,18,19,20,21,26 com/cardinalcommerce/a/P2.java, line(s) 32 com/cardinalcommerce/a/Q2.java, line(s) 53,88 com/cardinalcommerce/a/W5.java, line(s) 110,128 com/cardinalcommerce/a/X2.java, line(s) 13,14,15,16,17,18,19,12,20,21,22,47,48,49,23,24,25,26,27,28,29,30,31,32,33,34,35,36,37,38,39,40,41,42,43,44,45,46,10 com/cardinalcommerce/a/Z2.java, line(s) 22,23,24,59,60,71,61,25,54,55,56,57,58,62,49,51,72,21,63,52,64,53,50,81,80,70,65,66,67,68,69 com/cardinalcommerce/a/hd.java, line(s) 4,5,6,7,8,9 com/cardinalcommerce/dependencies/internal/bouncycastle/jcajce/provider/asymmetric/x509/X509CertificateImpl.java, line(s) 314 com/cardinalcommerce/dependencies/internal/bouncycastle/jcajce/provider/asymmetric/x509/X509CertificateObject.java, line(s) 78,58 com/cardinalcommerce/dependencies/internal/bouncycastle/pqc/asn1/PQCObjectIdentifiers.java, line(s) 34,35,27,36,37,38,20,46,55,47,48,49,50,51,52,53,54 com/cardinalcommerce/dependencies/internal/nimbusds/jose/jwk/Curve.java, line(s) 9,10,11,12,13 com/legic/mobile/sdk/g/d.java, line(s) 51 com/legic/mobile/sdk/i/a.java, line(s) 141
中危安全漏洞 文件可能包含硬编码的敏感信息,如用户名、密码、密钥等
文件可能包含硬编码的敏感信息,如用户名、密码、密钥等 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#checking-memory-for-sensitive-data-mstg-storage-10 Files: coil/memory/c.java, line(s) 179 coil3/intercept/EngineInterceptor.java, line(s) 124 coil3/memory/d.java, line(s) 93 coil3/request/e.java, line(s) 317,317 coil3/request/l.java, line(s) 92 coil3/request/p.java, line(s) 65 com/accor/addreservation/feature/common/success/models/a.java, line(s) 393 com/accor/addreservation/feature/model/a.java, line(s) 489 com/accor/apollo/C1418z.java, line(s) 225 com/accor/apollo/C4317z.java, line(s) 234 com/accor/apollo/type/A1.java, line(s) 40 com/accor/apollo/type/U.java, line(s) 40 com/accor/app/startdispatcher/model/a.java, line(s) 698 com/accor/connection/feature/authentication/home/model/AuthenticationHomeUiModel.java, line(s) 327 com/accor/connection/feature/authentication/password/model/AuthenticationPasswordUiModel.java, line(s) 170 com/accor/connection/feature/jddmenu/model/a.java, line(s) 102 com/accor/connection/feature/signin/model/a.java, line(s) 485 com/accor/connection/feature/signup/choosepassword/model/a.java, line(s) 186,331 com/accor/connection/feature/signup/completepersonalinformations/model/CompleteAccountPersonalInformationsUiModel.java, line(s) 695 com/accor/core/domain/external/config/model/C1529f.java, line(s) 32 com/accor/core/domain/external/config/model/C1532i.java, line(s) 47 com/accor/core/domain/external/config/model/C4428f.java, line(s) 33 com/accor/core/domain/external/config/model/C4431i.java, line(s) 48 com/accor/core/domain/external/config/model/M.java, line(s) 32 com/accor/core/domain/external/config/model/r.java, line(s) 40 com/accor/core/domain/external/config/model/s.java, line(s) 57 com/accor/core/domain/external/config/model/v.java, line(s) 29 com/accor/core/domain/external/config/model/z.java, line(s) 48 com/accor/core/domain/external/deeplink/model/c.java, line(s) 287 com/accor/core/domain/external/home/model/b.java, line(s) 90 com/accor/core/domain/external/onboarding/model/b.java, line(s) 82 com/accor/core/presentation/credential/model/a.java, line(s) 50 com/accor/core/presentation/deeplink/model/a.java, line(s) 537 com/accor/core/presentation/feature/createaccount/model/CreateAccountModel.java, line(s) 343 com/accor/data/local/deal/DealLocalDataSourceImpl.java, line(s) 26 com/accor/data/local/digitalkey/DigitalKeyLocalDataSourceImpl.java, line(s) 19 com/accor/data/local/loyaltycorner/LoyaltyCornerLocalDataSourceImpl.java, line(s) 13,16 com/accor/data/local/news/NewsLocalDataSourceImpl.java, line(s) 13,16,19,22,25,28,34 com/accor/data/local/notification/NotificationDataSourceImpl.java, line(s) 16 com/accor/data/local/stay/room/directory/RoomDirectoryShowcaseLocalDataSourceImpl.java, line(s) 13 com/accor/data/local/stay/room/inappmessaging/InAppMessagingLocalDataSourceImpl.java, line(s) 17,20 com/accor/data/local/whatsapp/HotelWhatsAppVisibilityLocalDataSourceImpl.java, line(s) 13 com/accor/data/proxy/core/configuration/c.java, line(s) 99 com/accor/data/proxy/dataproxies/authentication/oidc/model/NetworkOidcLoginParams.java, line(s) 81 com/accor/data/proxy/dataproxies/autocomplete/models/NetworkSearchAutocompleteParams.java, line(s) 178 com/accor/data/proxy/dataproxies/basket/models/NetworkBasketPolicyMetaInformation.java, line(s) 77 com/accor/data/proxy/dataproxies/basket/models/NetworkMeta.java, line(s) 77 com/accor/data/proxy/dataproxies/booking/models/NetworkProfileRequestType.java, line(s) 154 com/accor/data/proxy/dataproxies/common/models/NetworkGenericValidationError.java, line(s) 113 com/accor/data/proxy/dataproxies/deals/model/NetworkOfferTarget.java, line(s) 96 com/accor/data/proxy/dataproxies/deals/model/NetworkOfferType.java, line(s) 96 com/accor/data/proxy/dataproxies/deals/model/NetworkPromoMechanism.java, line(s) 57 com/accor/data/proxy/dataproxies/identification/PostIdentificationDataProxy.java, line(s) 30 com/accor/data/proxy/dataproxies/login/renewpassword/model/NetworkRenewPasswordCredentials.java, line(s) 78 com/accor/data/proxy/dataproxies/room/model/NetworkRoomOfferPolicyMeta.java, line(s) 77 com/accor/data/proxy/dataproxies/user/createV2/UserEntity.java, line(s) 249 com/accor/data/repository/appicon/AppIconRepositoryImpl.java, line(s) 15 com/accor/data/repository/apptheme/AppThemeRepositoryImpl.java, line(s) 26 com/accor/data/repository/config/entity/AppsFlyerEntity.java, line(s) 57 com/accor/data/repository/config/entity/Batch.java, line(s) 110 com/accor/data/repository/config/entity/DigitalKey.java, line(s) 78 com/accor/data/repository/config/entity/GoogleStreetViewEntity.java, line(s) 57 com/accor/data/repository/config/entity/InteractionStudio.java, line(s) 97 com/accor/data/repository/config/entity/Jdd.java, line(s) 276 com/accor/data/repository/config/entity/NetworkConfiguration.java, line(s) 138 com/accor/data/repository/config/entity/Uber.java, line(s) 78 com/accor/data/repository/deeplink/CampaignCategoryRepositoryImpl.java, line(s) 46,50,53 com/accor/data/repository/home/StoryDisplayedRepositoryImpl.java, line(s) 14 com/accor/data/repository/login/SocialRepositoryImpl.java, line(s) 14,17 com/accor/data/repository/myaccount/DashboardPreferencesRepositoryImpl.java, line(s) 22,25 com/accor/data/repository/mybookings/BookingEventRepositoryImpl.java, line(s) 14 com/accor/data/repository/oidc/AccessTokenCookiesRepository.java, line(s) 24,28 com/accor/data/repository/rating/RatingOpeningRepositoryImpl.java, line(s) 15,18 com/accor/data/repository/statusupdate/GetStatusUpdateRepositoryImpl.java, line(s) 20,23,29,32 com/accor/data/repository/upsertappinfo/UpsertAppInfoRepositoryImpl.java, line(s) 18 com/accor/deal/domain/model/d.java, line(s) 37 com/accor/digitalkey/data/repository/DigitalKeyRepositoryImpl.java, line(s) 137,208 com/accor/features/user/loyalty/loyaltycard/model/a.java, line(s) 317 com/accor/features/user/renewpassword/model/b.java, line(s) 422 com/accor/home/feature/model/HomeUiModel.java, line(s) 735 com/accor/home/feature/model/d.java, line(s) 155 com/accor/network/b.java, line(s) 40 com/accor/user/loyalty/status/domain/external/statusupdate/model/a.java, line(s) 49 com/batch/android/Batch.java, line(s) 293,291,292,294 com/batch/android/BatchActionActivity.java, line(s) 15 com/batch/android/BatchEventAttributes.java, line(s) 15,16 com/batch/android/BatchMessage.java, line(s) 12 com/batch/android/BatchPushJobService.java, line(s) 12 com/onetrust/otpublishers/headless/Public/Keys/OTUXParamsKeys.java, line(s) 42 com/onetrust/otpublishers/headless/UI/DataModels/d.java, line(s) 18 com/onetrust/otpublishers/headless/UI/UIProperty/n.java, line(s) 18 com/qualtrics/digital/EmbeddedFeedbackUtils.java, line(s) 33,36,46,53,83,86,97 com/qualtrics/digital/EmbeddedFeedbackUtilsJava.java, line(s) 12 com/qualtrics/digital/ExpressionDeserializer.java, line(s) 9 com/qualtrics/digital/QualtricsPopOverFragment.java, line(s) 33,34,36 com/qualtrics/digital/SDKUtils.java, line(s) 7 com/qualtrics/digital/XMDUtils.java, line(s) 7 com/qualtrics/digital/utils/TranslationUtils.java, line(s) 20 es/lockup/StaymywaySDK/data/room/model/g.java, line(s) 57 io/opentelemetry/android/internal/features/persistence/DiskManager.java, line(s) 13 io/opentelemetry/api/common/AutoValue_KeyValueImpl.java, line(s) 44
中危安全漏洞 SHA-1是已知存在哈希冲突的弱哈希
SHA-1是已知存在哈希冲突的弱哈希 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/batch/android/e/C1108a.java, line(s) 54 com/batch/android/e/C5694a.java, line(s) 55
中危安全漏洞 应用程序创建临时文件。敏感信息永远不应该被写进临时文件
应用程序创建临时文件。敏感信息永远不应该被写进临时文件 Files: io/opentelemetry/contrib/disk/buffering/internal/files/DefaultTemporaryFileProvider.java, line(s) 18
中危安全漏洞 应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库
应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04h-Testing-Code-Quality.md#injection-flaws-mstg-arch-2-and-mstg-platform-2 Files: com/assaabloy/mobilekeys/api/analytics/a/h/b.java, line(s) 7,523,801 com/batch/android/b1/a.java, line(s) 4,5,28,34,37 com/batch/android/c1/c.java, line(s) 7,8,9,111,156,262 com/batch/android/c1/g.java, line(s) 4,5,26,27 com/batch/android/q/c.java, line(s) 4,5,34,35,36,42 com/batch/android/q/d.java, line(s) 6,7,8,50,194,208 com/batch/android/r/b.java, line(s) 5,6,35 com/batch/android/r/c.java, line(s) 6,50,116,133,142 com/clarisite/mobile/d/C0195g.java, line(s) 9,10,187 com/clarisite/mobile/d/C6170g.java, line(s) 9,10,191 com/clarisite/mobile/d/h.java, line(s) 5,6,32,42 com/legic/mobile/sdk/f1/d.java, line(s) 4,5,6,187,424,446 com/legic/mobile/sdk/f1/e.java, line(s) 4,5,6,447,466 com/legic/mobile/sdk/u/d.java, line(s) 4,5,6,7,514 com/legic/mobile/sdk/u/e.java, line(s) 4,5,6,7,410,601
中危安全漏洞 不安全的Web视图实现。可能存在WebView任意代码执行漏洞
不安全的Web视图实现。可能存在WebView任意代码执行漏洞 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#testing-javascript-execution-in-webviews-mstg-platform-5 Files: com/accor/core/presentation/webview/view/e.java, line(s) 109,111,102 com/batch/android/f0/e.java, line(s) 206,197 com/clarisite/mobile/s.java, line(s) 188,183 com/qualtrics/digital/QualtricsSurveyFragment.java, line(s) 260,259
中危安全漏洞 此应用程序可能会请求root(超级用户)权限
此应用程序可能会请求root(超级用户)权限 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1 Files: com/clarisite/mobile/z/B.java, line(s) 153,153,153,153,153
中危安全漏洞 MD5是已知存在哈希冲突的弱哈希
MD5是已知存在哈希冲突的弱哈希 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: com/accor/app/tools/k.java, line(s) 54 com/batch/android/e/n.java, line(s) 35,55
中危安全漏洞 此应用可能包含硬编码机密信息
从应用程序中识别出以下机密确保这些不是机密或私人信息 谷歌地图的=> "com.google.android.maps.v2.API_KEY" : "@string/gmap_v2_api_key" "authentication_password_cta" : "Continue" "bmap_v2_api_key" : "Q44BfMhXzbrG11GKKkEpAz6KZ4lcbCOy" "com.google.firebase.crashlytics.mapping_file_id" : "305d4e19464748f0b46f8f64b0135dde" "com_batchsdk_local_campaign_debug_fragment_token" : "Token" "deal_private_offer_logged_out_header" : "Log-in" "digital_key_deeplink_host" : "digitalkey" "digital_keys_checkin" : "Check-in" "digital_keys_checkout" : "Check-out" "digital_keys_key_option_title" : "Options" "digital_keys_no_thanks" : "Later" "digital_keys_open_door_active_opening_description" : "Opening..." "digital_keys_permission_fine_location_needed_activate" : "Activate" "digital_keys_reservation_key_room_number_unknown" : "---" "digital_keys_skip_permissions" : "Deny" "facebook_app_id" : "193509207478654" "firebase_database_url" : "https://api-project-333446645058.firebaseio.com" "gmap_v2_api_key" : "AIzaSyBWuVhiFqE46V09xi_6EUqqbHxwOA8T5eg" "google_api_key" : "AIzaSyANbI53-5ULv7JhKiCPY02GPMhm5v1B32c" "google_app_id" : "1:333446645058:android:3b352af297caf039" "google_crash_reporting_api_key" : "AIzaSyANbI53-5ULv7JhKiCPY02GPMhm5v1B32c" "profile_section_profile_password" : "Password" 1AB597A5B4477F59E39539007C7F977D1A567B92B043A49C6B61984C3FE3481AAF454CD41BA1F051626442B3C10 79de623f12cce5ce9b22a0c0ab6ebe62daa696a5830c913ff56bb38c89c0fb65 0400FAC9DFCBAC8313BB2139F1BB755FEF65BC391F8B36F8F8EB7371FD558B01006A08A41903350678E58528BEBF8A0BEFF867A7CA36716F7E01F81052 EE353FCA5428A9300D4ABA754A44C00FDFEC0C9AE4B1A1803075ED967B7BB73F 041D1C64F068CF45FFA2A63A81B7C13F6B8847A3E77EF14FE3DB7FCAFE0CBD10E8E826E03436D646AAEF87B2E247D4AF1E8ABE1D7520F9C2A45CB1EB8E95CFD55262B70B29FEEC5864E19C054FF99129280E4646217791811142820341263C5315 20b61666136754ada8e3ab5cba6303ef7a463fdf1c5166c4cef9679a7308fb03 393C7F7D53666B5054B5E6C6D3DE94F4296C0C599E2E2E241050DF18B6090BDC90186904968BB 000E0D4D696E6768756151750CC03A4473D03679 43FC8AD242B0B7A6F3D1627AD5654447556B47BF6AA4A64B0C2AFE42CADAB8F93D92394C79A79755437B56995136 26DC5C6CE94A4B44F330B5D9BBD77CBF958416295CF7E1CE6BCCDC18FF8C07B6 043AE9E58C82F63C30282E1FE7BBF43FA72C446AF6F4618129097E2C5667C2223A902AB5CA449D0084B7E5B3DE7CCC01C9 fc51c85341a602dcd90010d1bae760cb 79885141663410976897627118935756323747307951916507639758300472692338873533959 4230017757A767FAE42398569B746325D45313AF0766266479B75654E65F 00E8BEE4D3E2260744188BE0E9C723 027B680AC8B8596DA5A4AF8A19A0303FCA97FD7645309FA2A581485AF6263E313B79A2F5 044A96B5688EF573284664698968C38BB913CBFC8223A628553168947D59DCC912042351377AC5FB32 bebc3c50efc8ad09c93bf40fbdaec003e102bfa7dad418fc413b878ca9093299 MQVwithSHA256KDFAndSharedInfo A9FB57DBA1EEA9BC3E660A909D838D718C397AA3B561A6F7901E0E82974856A7 7CBBBCF9441CFAB76E1890E46884EAE321F70C0BCB4981527897504BEC3E36A62BCDFA2304976540F6450085F2DAE145C22553B465763689180EA2571867423E 3086d221a7d46bcde86c90e49284eb153dab c39c6c3b3a36d7701b9c71a1f5804ae5d0003f4 10C0FB15760860DEF1EEF4D696E676875615175D 3EE30B568FBAB0F883CCEBD46D3F3BB8A2A73513F5EB79DA66190EB085FFA9F492F375A97D860EB4 9b106efea91439744df6fc54ebaf48813f932b011e5297d020134dd08d4a58eb E3F9E1E0CF99D0E56A055BA65E241B3399F7CEA524326B0CDD6EC1327ED0FDC1 4D41A619BCC6EADF0448FA22FAD567A9181D37389CA 48439561293906451759052585252797914202762949526041747995844080717082404635286 0d5c6ec3885e9ee82f23fb2fa7b7109877bbc761af972bbbcaa0c808a1095cb4 4E13CA542744D696E67687561517552F279A8C84 4c389dfa75e0ad14dd60b09e2c81b373b64b8e38ead806c9b5913a015e403fd2 DB7C2ABF62E35E7628DFAC6561C5 A9FB57DBA1EEA9BC3E660A909D838D726E3BF623D52620282013481D1F6E5377 02F40E7E2221F295DE297117B7F3D62F5C6A97FFCB8CEFF1CD6BA8CE4A9A18AD84FFABBD8EFA59332BE7AD6756A66E294AFD185A78FF12AA520E4DE739BACA0C7FFEFF7F2955727A 71FE1AF926CF847989EFEF8DB459F66394D90F32AD3F15E8 3045AE6FC8422f64ED579528D38120EAE12196D5 52da6e9314a96b7fd0cf69e9cbd855e79f16b477d4d12cc7418da34f3fdd01f2 b0b4417601b59cbc9d8ac8f935cadaec4f5fbb2f23785609ae466748d9b5a536 E95E4A5F737059DC60DF5991D45029409E60FC09 714114B762F2FF4A7912A6D2AC58B9B5C2FCFE76DAEB7129 71169be7330b3038edb025f1d0f9 6A91174076B1E0E19C39C031FE8685C1CAE040E5C69A28EF 5ca32739-9665-4fad-847d-59e7a239edfd 0066647EDE6C332C7F8C0923BB58213B333B20E9CE4281FE115F7D8F90AD e43bb460f0b80cc0c0b075798e948060f8321b7d 003088250CA6E7C7FE649CE85820F7 F1FD178C0B3AD58F10126DE8CE42435B3961ADBCABC8CA6DE8FCF353D86E9C00 072546B5435234A422E0789675F432C89435DE5242 12511cfe811d0f4e6bc688b4d 22123dc2395a05caa7423daeccc94760a7d462256bd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f15230bccb292b982a2eb840bf0581cf5 02120FC05D3C67A99DE161D2F4092622FECA701BE4F50F4758714E8A87BBF2A658EF8C21E7C5EFE965361F6C2999C0C247B0DBD70CE6B7 8325710961489029985546751289520108179287853048861315594709205902480503199884419224438643760392947333078086511627871 10B7B4D696E676875615175137C8A16FD0DA2211 A7F561E038EB1ED560B3D147DB782013064C19F27ED27C6780AAF77FB8A547CEB5B4FEF422340353 02197B07845E9BE2D96ADB0F5F3C7F2CFFBD7A3EB8B6FEC35C7FD67F26DDF6285A644F740A2614 7fffffffffffffffffffffff800000cfa7e8594377d414c03821bc582063 36134250956749795798585127919587881956611106672985015071877198253568414405109 68363196144955700784444165611827252895102170888761442055095051287550314083023 3045AE6FC8422F64ED579528D38120EAE12196D5 340E7BE2A280EB74E2BE61BADA745D97E8F7C300 0236B3DAF8A23206F9C4F299D7B21A9C369137F2C84AE1AA0D 115792089210356248762697446949407573530086143415290314195533631308867097853948 1BC5D5A5-0200-B99F-E211-CE0840B5DB73 142011741597563481196368286022318089743276138395243738762872573441927459393512718973631166078467600360848946623567625795282774719212241929071046134208380636394084512691828894000571524625445295769349356752728956831541775441763139384457191755096847107846595662547942312293338483924514339614727760681880609734239 A335926AA319A27A1D00896A6773A4827ACDAC73 5F49EB26781C0EC6B8909156D98ED435E45FD59918 2866537B676752636A68F56554E12640276B649EF7526267 6d7509bb40a0c1db88ffaca0d47990ac6d5dd8bb059aa5fe309fcb8b42a536e9 D7C134AA264366862A18302575D0FB98D116BC4B6DDEBCA3A5A7939F 295F9BAE7428ED9CCC20E7C359A9D41A22FCCD9108E17BF7BA9337A6F8AE9513 07A526C63D3E25A256A007699F5447E32AE456B50E f19724d3aef9e0f73cee4d282cf9c4509f67a8d29a753a1063bfa136cdf12364 d0fd1873f6bc6febaa83531f622ad2c9690c3dfb7fb35a7d33986eb0a74358a3 a35ff9c96f7de475c0d17dfc4c35c91f4d32a66d1ea116ecf7c25b4d8540f8ea 617fab6832576cbbfed50d99f0249c3fee58b94ba0038c7ae84c8c832f2c 103FAEC74D696E676875615175777FC5B191EF30 0409487239995A5EE76B55F9C2F098A89CE5AF8724C0A23E0E0FF77500 03E5A88919D7CAFCBF415F07C2176573B2 fca1d26705d22f7d874f339908eec1445b6311993a8636c864271aef0d9673f1 7BC86E2102902EC4D5890E8B6B4981ff27E0482750FEFC03 d09f16bb53f029e889cbf95a5f4533117b5ef1ec34146f67692a0ef4922327b4 3757180025770020463545507224491183603594455134769762486694567779615544477440556316691234405012945539562144444537289428522585666729196580810124344277578376784 8661c54e618b46d82bc118dcc336f2f914ff9522747f34aea8c9817e5d129da6 f7e1a085d69b3ddecbbcab5c36b857b97994afbbfa3aea82f9574c0b3d0782675159578ebad4594fe67107108180b449167123e84c281613b7cf09328cc8a6e13c167a8b547c8d28e0a3ae1e2bb3a675916ea37f0bfa213562f1fb627a01243bcca4f1bea8519089a883dfe15ae59f06928b665e807b552564014c3bfecf492a 06973B15095675534C7CF7E64A21BD54EF5DD3B8A0326AA936ECE454D2C 3FCDA526B6CDF83BA1118DF35B3C31761D3545F32728D003EEB25EFE96 5736255c8c1886934fe1bf2193a11b79299408780811c7f6b73bbfb40eceb0f3 d28e379c7e48e9978a274ddc08a84d8e2a47c3cc74a16f1bb8633a5460f284ad 10B51CC12849B234C75E6DD2028BF7FF5C1CE0D991A1 5037EA654196CFF0CD82B2C14A2FCF2E3FF8775285B545722F03EACDB74B 0108B39E77C4B108BED981ED0E890E117C511CF072 D35E472036BC4FB7E13C785ED201E065F98FCFA6F6F40DEF4F92B9EC7893EC28FCD412B1F1B32E27 3BAF59A2E5331C30675FAB35FF5FFF0D116142D3D4664F1C3CB804068B40614F D2C0FB15760860DEF1EEF4D696E6768756151754 6C01074756099122221056911C77D77E77A777E7E7E77FCB 1E589A8595423412134FAA2DBDEC95C8D8675E58 324A6EDDD512F08C49A99AE0D3F961197A76413E7BE81A400CA681E09639B5FE12E59A109F78BF4A373541B3B9A1 e688b3541b81f34a990c8cae25584ec36459fbd22084d4bb74146354a69e681d ddbce1edb17f5090993cdc0cd8e95579c62bb32b0b72437dda91c5c66c722154 040D9029AD2C7E5CF4340823B2A87DC68C9E4CE3174C1E6EFDEE12C07D58AA56F772C0726F24C6B89E4ECDAC24354B9E99CAA3F6D3761402CD c49d360886e704936a6678e1139d26b7819f7e90 9B9F605F5A858107AB1EC85E6B41C8AACF846E86789051D37998F7B9022D7598 b0764ce90c13726a419361d14e31a780cce070e43f946fdb394a74f7cffe8c30 11464ee7b7fdceaf1ced036f6f4280b57e85fc3c4aad0768f42712041d819f13 048BD2AEB9CB7E57CB2C4B482FFC81B7AFB9DE27E1E3BD23C23A4453BD9ACE3262547EF835C3DAC4FD97F8461A14611DC9C27745132DED8E545C1D54C72F046997 5D9306BACD22B7FAEB09D2E049C6E2866C5D1677762A8F2F2DC9A11C7F7BE8340AB2237C7F2A0 b8adf1378a6eb73409fa6c9c637ba7f5 038D16C2866798B600F9F08BB4A8E860F3298CE04A5798 3d140fff17680998bf18d86ba61756e83db5ff5c9721e2685314ef615b722713 6BA06FE51464B2BD26DC57F48819BA9954667022C7D03 ba04c4b2-892b-43be-b69c-5d13f2195392 04B199B13B9B34EFC1397E64BAEB05ACC265FF2378ADD6718B7C7C1961F0991B842443772152C9E0AD JY+Cn0qwsdiDNm7bRMKW8A== 26247035095799689268623156744566981891852923491109213387815615900925518854738050089022388053975719786650872476732087 7A556B6DAE535B7B51ED2C4D7DAA7A0B5C55F380 040081BAF91FDF9833C40F9C181343638399078C6E7EA38C001F73C8134B1B4EF9E150 BDDB97E555A50A908E43B01C798EA5DAA6788F1EA2794EFCF57166B8C14039601E55827340BE 216EE8B189D291A0224984C1E92F1D16BF75CCD825A087A239B276D3167743C52C02D6E7232AA 04DB4FF10EC057E9AE26B07D0280B7F4341DA5D1B1EAE06C7D9B2F2F6D9C5628A7844163D015BE86344082AA88D95E2F9D 81c7ba26c8be8070a31335f939c6947c5745a7e986bc1c5536488070f7f17c0d E95E4A5F737059DC60DFC7AD95B3D8139515620F 00FDFB49BFE6C3A89FACADAA7A1E5BBC7CC1C2E5D831478814 033C258EF3047767E7EDE0F1FDAA79DAEE3841366A132E163ACED4ED2401DF9C6BDCDE98E8E707C07A2239B1B097 1e77a1d39f2d5ae73f0b2b445ff0a975ccd3442e5828f24f7ba91027582a048c 01AF286BCA1AF286BCA1AF286BCA1AF286BCA1AF286BC9FB8F6B85C556892C20A7EB964FE7719E74F490758D3B 8CB91E82A3386D280F5D6F7E50E641DF152F7109ED5456B412B1DA197FB71123ACD3A729901D1A71874700133107EC53 2709013560a4d2a84f23778e431c5cc541cdd73630d825f26f132e3779b7bcf4 7503CFE87A836AE3A61B8816E25450E6CE5E1C93ACF1ABC1778064FDCBEFA921DF1626BE4FD036E93D75E6A50E3A41E98028FE5FC235F5B889A589CB5215F2A4 0101BAF95C9723C57B6C21DA2EFF2D5ED588BDD5717E212F9D 678471b27a9cf44ee91a49c5147db1a9aaf244f05a434d6486931d2d14271b9e35030b71fd73da179069b32e2935630e1c2062354d0da20a6c416e50be794ca4 5014e9ca6aa0fc9b2db349b06cf4ac576f342c78f8595c15ba17fe62232a37ed 7A1F6653786A68192803910A3D30B2A2018B21CD54 77d0f8c4dad15eb8c4f2f8d6726cefd96d5bb399 04161FF7528B899B2D0C28607CA52C5B86CF5AC8395BAFEB13C02DA292DDED7A83 bc1e6cfe75395b4122ea42031cc559c4ca558d20bec7ac5525791de49d895ac9 04A3E8EB3CC1CFE7B7732213B23A656149AFA142C47AAFBC2B79A191562E1305F42D996C823439C56D7F7B22E14644417E69BCB6DE39D027001DABE8F35B25C9BE 7D5A0975FC2C3057EEF67530417AFFE7FB8055C126DC5C6CE94A4B44F330B5D9 6b8cf07d4ca75c88957d9d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b869c82b35d70e1b1ff91b28e37a62ecdc34409b 07B6882CAAEFA84F9554FF8428BD88E246D2782AE2 E0D2EE25095206F5E2A4F9ED229F1F256E79A0E2B455970D8D0D865BD94778C576D62F0AB7519CCD2A1A906AE30D 41ECE55743711A8C3CBF3783CD08C0EE4D4DC440D4641A8F366E550DFDB3BB67 25FBC363582DCEC065080CA8287AAFF09788A66DC3A9E 114ca50f7a8e2f3f657c1108d9d44cfd8 39402006196394479212279040100143613805079739270465446667946905279627659399113263569398956308152294913554433653942643 f8183668ba5fc5bb06b5981e6d8b795d30b8978d43ca0ec572e37e09939a9773 0095E9A9EC9B297BD4BF36E059184F 0340340340340340340340340340340340340340340340340340340323C313FAB50589703B5EC68D3587FEC60D161CC149C1AD4A91 2580F63CCFE44138870713B1A92369E33E2135D266DBB372386C400B 29C41E568B77C617EFE5902F11DB96FA9613CD8D03DB08DA 0401F481BC5F0FF84A74AD6CDF6FDEF4BF6179625372D8C0C5E10025E399F2903712CCF3EA9E3A1AD17FB0B3201B6AF7CE1B05 2E2F85F5DD74CE983A5C4237229DAF8A3F35823BE dc60bc3748ae468379fc1ffcd5ce1dc59aa2eb196bdbb1e1309817c5ee413b5c 5363ad4cc05c30e0a5261c028812645a122e22ea20816678df02967c1b23bd72 1437a0872721370429046082351c6607d316ed40883145e3f7d1b4383d4ab5c9 e4db8f33183c6e6f6e269aa2f4a1fb791e0ccb709cdacea2d6a8fea8543420ba MQVwithSHA384KDFAndSharedInfo 04026EB7A859923FBC82189631F8103FE4AC9CA2970012D5D46024804801841CA44370958493B205E647DA304DB4CEB08CBBD1BA39494776FB988B47174DCA88C7E2945283A01C89720349DC807F4FBF374F4AEADE3BCA95314DD58CEC9F307A54FFC61EFC006D8A2C9D4979C0AC44AEA74FBEBBB9F772AEDCB620B01A7BA7AF1B320430C8591984F601CD4C143EF1C7A3 nV3CFYRifKj6XCN1ZOnlkgHxbHMKDrxCXk5VS5UmhXI= 0452DCB034293A117E1F4FF11B30F7199D3144CE6DFEAFFEF2E331F296E071FA0DF9982CFEA7D43F2E fe0e87005b4e83761908c5131d552a850b3f58b749c37cf5b84d6768 6864797660130609714981900799081393217269435300143305409394463459185543183397656052122559640661454554977296311391480858037121987999716643812574028291115057151 434a7d5623f6bb92d2714443095611045368a1bd93197a1dc0b763fb5a5d4040 020ffa963cdca8816ccc33b8642bedf905c3d358573d3f27fbbd3b3cb9aaaf 5FF6108462A2DC8210AB403925E638A19C1455D21 fa325cfbe9567f174311f8f07fe4e3e919f36ffd63f0d57ca398331e8e0b3d24 4B337D934104CD7BEF271BF60CED1ED20DA14C08B3BB64F18A60888D d0882bb31b4eb024771f3a4db9348235a1da27047d4d361dbfda34d514652a5b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a92ee2029fd10d901b113e990710f0d21ac6b6 5DDA470ABE6414DE8EC133AE28E9BBD7FCEC0AE0FFF2 2a153c946b8a1d4ce228448d31fa287df44a7b74ee20cca6627d0f2eb5ccd695 1BC5D5A5-0200-A786-E411-0FC9E0F8F25B 24B7B137C8A14D696E6768756151756FD0DA2E5C 0202F9F87B7C574D0BDECF8A22E6524775F98CDEBDCB 04188DA80EB03090F67CBF20EB43A18800F4FF0AFD82FF101207192B95FFC8DA78631011ED6B24CDD573F977A11E794811 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 04A8C7DD22CE28268B39B55416F0447C2FB77DE107DCD2A62E880EA53EEB62D57CB4390295DBC9943AB78696FA504C11 6864797660130609714981900799081393217269435300143305409394463459185543183397656052122559640661454554977296311391480858037121987999716643812574028291115057148 07A11B09A76B562144418FF3FF8C2570B8 0163F35A5137C2CE3EA6ED8667190B0BC43ECD69977702709B FC1217D4320A90452C760A58EDCD30C8DD069B3C34453837A34ED50CB54917E1C2112D84D164F444F8F74786046A b3fb3400dec5c4adceb8655d4c94 AADD9DB8DBE9C48B3FD4E6AE33C9FC07CB308DB3B3C9D20ED6639CCA703308717D4D9B009BC66842AECDA12AE6A380E62881FF2F2D82C68528AA6056583A48F3 AADD9DB8DBE9C48B3FD4E6AE33C9FC07CB308DB3B3C9D20ED6639CCA703308717D4D9B009BC66842AECDA12AE6A380E62881FF2F2D82C68528AA6056583A48F0 03CE10490F6A708FC26DFE8C3D27C4F94E690134D5BFF988D8D28AAEAEDE975936C66BAC536B18AE2DC312CA493117DAA469C640CAF3 2E45EF571F00786F67B0081B9495A3D95462F5DE0AA185EC B99B99B099B323E02709A4D696E6768756151751 47f9cf1e45b3070889a107f7e6c109162600f5ff28d20246853de3d143e02c49 3FA8124359F96680B83D1C3EB2C070E5C545C9858D03ECFB744BF8D717717EFC 2661740802050217063228768716723360960729859168756973147706671368418802944996427808491545080627771902352094241225065558662157113545570916814161637315895999846 36DF0AAFD8B8D7597CA10520D04B 8b00ace7-eb0b-49b0-bbe9-9aee0a26e1a3 30579ef9301ce0be45302479ba5ad6c90422db20fa0c7f5337ea25684c9d0e6e 4D696E676875615175985BD3ADBADA21B43A97E2 040369979697AB43897789566789567F787A7876A65400435EDB42EFAFB2989D51FEFCE3C80988F41FF883 010090512DA9AF72B08349D98A5DD4C7B0532ECA51CE03E2D10F3B7AC579BD87E909AE40A6F131E9CFCE5BD967 9cdbd84c9f1ac2f38d0f80f42ab952e7338bf511 046AB1E344CE25FF3896424E7FFE14762ECB49F8928AC0C76029B4D5800374E9F5143E568CD23F3F4D7C0D4B1E41C8CC0D1C6ABD5F1A46DB4C 91771529896554605945588149018382750217296858393520724172743325725474374979801 e06d5efb-4f4a-45c0-9eb1-371ae5a14ad4 bb85691939b869c1d087f601554b96b80cb4f55b35f433c2 AC44F0A1-1B35-455F-8141-123785934C69 51DEF1815DB5ED74FCC34C85D709 00C9517D06D5240D3CFF38C74B20B6CD4D6F9DD4D9 C2173F1513981673AF4892C23035A27CE25E2013BF95AA33B22C656F277E7335 962eddcc369cba8ebb260ee6b6a126d9346e38c5 100997906755055304772081815535925224869841082572053457874823515875577147990529272777244152852699298796483356699682842027972896052747173175480590485607134746852141928680912561502802222185647539190902656116367847270145019066794290930185446216399730872221732889830323194097355403213400972588322876850946740663962 d9789bec-18e5-41b4-9b27-8c3e8cddad75 B4050A850C04B3ABF54132565044B0B7D7BFD8BA270B39432355FFB4 1243ae1b4d71613bc9f780a03690e BDB6F4FE3E8B1D9E0DA8C0D40FC962195DFAE76F56564677 10686D41FF744D4449FCCF6D8EEA03102E6812C93A9D60B978B702CF156D814EF 026108BABB2CEEBCF787058A056CBE0CFE622D7723A289E08A07AE13EF0D10D171DD8D 115792089237316195423570985008687907852837564279074904382605163141518161494337 C302F41D932A36CDA7A3463093D18DB78FCE476DE1A86297 139e1f993e3f140e87246037c5f9b7aeaa0ac84ea4e77c83bf1486d85162fea1 MQVwithSHA512KDFAndSharedInfo BB8E5E8FBC115E139FE6A814FE48AAA6F0ADA1AA5DF91985 790408F2EEDAF392B012EDEFB3392F30F4327C0CA3F31FC383C422AA8C16 04009D73616F35F4AB1407D73562C10F00A52830277958EE84D1315ED31886 8D91E471E0989CDA27DF505A453F2B7635294F2DDF23E3B122ACC99C9E9F1E14 8cf54a5c85b4c27143e66d4db7c79616747571bf3a42802762a5c40587d98303 5667676A654B20754F356EA92017D946567C46675556F19556A04616B567D223A5E05656FB549016A96656A557 04BED5AF16EA3F6A4F62938C4631EB5AF7BDBCDBC31667CB477A1A8EC338F94741669C976316DA6321 8CB91E82A3386D280F5D6F7E50E641DF152F7109ED5456B31F166E6CAC0425A7CF3AB6AF6B7FC3103B883202E9046565 520883949DFDBC42D3AD198640688A6FE13F41349554B49ACC31DCCD884539816F5EB4AC8FB1F1A6 d00b74d7-b012-4ed3-a9f2-1945b6a6de41 108576C80499DB2FC16EDDF6853BBB278F6B6FB437D9 ffffffff00000000ffffffffffffffffbce6faada7179e84f3b9cac2fc632551 04B8266A46C55657AC734CE38F018F2192 85E25BFE5C86226CDB12016F7553F9D0E693A268 046B17D1F2E12C4247F8BCE6E563A440F277037D812DEB33A0F4A13945D898C2964FE342E2FE1A7F9B8EE7EB4A7C0F9E162BCE33576B315ECECBB6406837BF51F5 0217C05610884B63B9C6C7291678F9D341 0432C4AE2C1F1981195F9904466A39C9948FE30BBFF2660BE1715A4589334C74C7BC3736A2F4F6779C59BDCEE36B692153D0A9877CC62A474002DF32E52139F0A0 7B425ED097B425ED097B425ED097B425ED097B425ED097B4260B5E9C7710C864 f936f207219941ad777e79c1516700252a1029ed0c98c10221d8b931020a5074 3086d221a7d46bcde86c90e49284eb15 00F50B028E4D696E676875615175290472783FB1 04015D4860D088DDB3496B0C6064756260441CDE4AF1771D4DB01FFE5B34E59703DC255A868A1180515603AEAB60794E54BB7996A70061B1CFAB6BE5F32BBFA78324ED106A7636B9C5A7BD198D0158AA4F5488D08F38514F1FDF4B4F40D2181B3681C364BA0273C706 E4E6DB2995065C407D9D39B8D0967B96704BA8E9C90B E87579C11079F43DD824993C2CEE5ED3 6b016c3bdcf18941d0d654921475ca71a9db2fb27d1d37796185c2942c0a FD0D693149A118F651E6DCE6802085377E5F882D1B510B44160074C1288078365A0396C8E681 91E38443A5E82C0D880923425712B2BB658B9196932E02C78B2582FE742DAA28 7f15c4d23e6a27357bf639ac0359f43fed13aa00d490fa9eb7bb46c97c3f8829 96494be4-b276-40d1-8279-81306e848fe4 687D1B459DC841457E3E06CF6F5E2517B97C7D614AF138BCBF85DC806C4B289F3E965D2DB1416D217F8B276FAD1AB69C50F78BEE1FA3106EFB8CCBC7C5140116 04017232BA853A7E731AF129F22FF4149563A419C26BF50A4C9D6EEFAD612601DB537DECE819B7F70F555A67C427A8CD9BF18AEB9B56E0C11056FAE6A3 AADD9DB8DBE9C48B3FD4E6AE33C9FC07CB308DB3B3C9D20ED6639CCA70330870553E5C414CA92619418661197FAC10471DB1D381085DDADDB58796829CA90069 0100FAF51354E0E39E4892DF6E319C72C8161603FA45AA7B998A167B8F1E629521 0307AF69989546103D79329FCC3D74880F33BBE803CB 1BC5D5A5-0200-9CA7-E211-CE086083B399 0403F0EBA16286A2D57EA0991168D4994637E8343E3600D51FBC6C71A0094FA2CDD545B11C5C0C797324F1 290809a02a8f61ccdf573faeeddd0bcae3e2734467713b18469749753de005dd ad6f1ec19c58e0168193166cc42e3039 74D59FF07F6B413D0EA14B344B20A2DB049B50C3 F1FD178C0B3AD58F10126DE8CE42435B53DC67E140D2BF941FFDD459C6D655E1 1A827EF00DD6FC0E234CAF046C6A5D8A85395B236CC4AD2CF32A0CADBDC9DDF620B0EB9906D0957F6C6FEACD615468DF104DE296CD8F 1093849038073734274511112390766805569936207598951683748994586394495953116150735016013708737573759623248592132296706313309438452531591012912142327488478985984 0257927098FA932E7C0A96D3FD5B706EF7E5F5C156E16B7E7C86038552E91D 027d29778100c65a1da1783716588dce2b8b4aee8e228f1896 7830A3318B603B89E2327145AC234CC594CBDD8D3DF91610A83441CAEA9863BC2DED5D5AA8253AA10A2EF1C98B9AC8B57F1117A72BF2C7B9E7C1AC4D77FC94CA c1201387fce993a22f70e869afa26b2ab75ba9e7b77887baac535d7d97991ac9 6B489E0E-97DE-4D4D-9C06-2505E7BC66BF 4eac0a308283a13e5875c6691b15c4b7d3a0bad191743d507c52d537c0d88bd9 040356DCD8F2F95031AD652D23951BB366A80648F06D867940A5366D9E265DE9EB240F 469A28EF7C28CCA3DC721D044F4496BCCA7EF4146FBF25C9 0400D9B67D192E0367C803F39E1A7E82CA14A651350AAE617E8F01CE94335607C304AC29E7DEFBD9CA01F596F927224CDECF6C fca682ce8e12caba26efccf7110e526db078b05edecbcd1eb4a208f3ae1617ae01f35b91a47e6df63413c5e12ed0899bcd132acd50d99151bdc43ee737592e17 F5CE40D95B5EB899ABBCCFF5911CB8577939804D6527378B8C108C3D2090FF9BE18E2D33E3021ED2EF32D85822423B6304F726AA854BAE07D0396E9A9ADDC40F e280f4e6835bb932f25807ef1e5304fd 71593884f131c184b787067fc0c8072d19aa19937c3bde12bdfee7ba1e08135f 6864797660130609714981900799081393217269435300143305409394463459185543183397655394245057746333217197532963996371363321113864768612440380340372808892707005449 c469684435deb378c4b65ca9591e2a5763059a2e F1FD178C0B3AD58F10126DE8CE42435B3961ADBCABC8CA6DE8FCF353D86E9C03 1A62BA79D98133A16BBAE7ED9A8E03C32E0824D57AEF72F88986874E5AAE49C27BED49A2A95058068426C2171E99FD3B43C5947C857D 9ba48cba5ebcb9b6bd33b92830b2a2e0e192f10a 1BC5D5A5-0200-9CA5-E311-770E2068DC76 00C9BB9E8927D4D64C377E2AB2856A5B16E3EFB7F61D4316AE 1CEF494720115657E18F938D7A7942394FF9425C1458C57861F9EEA6ADBE3BE10 BDB6F4FE3E8B1D9E0DA8C0D46F4C318CEFE4AFE3B6B8551F dab4372657f6f814bc83bbecfd19cde57565b263ee039dacd82fa16d2c6c73ff 04B70E0CBD6BB4BF7F321390B94A03C1D356C21122343280D6115C1D21BD376388B5F723FB4C22DFE6CD4375A05A07476444D5819985007E34 0418DE98B02DB9A306F2AFCD7235F72A819B80AB12EBD653172476FECD462AABFFC4FF191B946A5F54D8D0AA2F418808CC25AB056962D30651A114AFD2755AD336747F93475B7A1FCA3B88F2B6A208CCFE469408584DC2B2912675BF5B9E582928 0017858FEB7A98975169E171F77B4087DE098AC8A911DF7B01 fc7a187d5170f6113a3dacf572e6dd28d704e561f1b4791c8bbb31ca3331523a 3E1AF419A269A5F866A7D3C25C3DF80AE979259373FF2B182F49D4CE7E1BBC8B 010092537397ECA4F6145799D62B0A19CE06FE26AD 60dcd2104c4cbc0be6eeefc2bdd610739ec34e317f9b33046c9e4788 8138e8a0fcf3a4e84a771d40fd305d7f4aa59306d7251de54d98af8fe95729a1f73d893fa424cd2edc8636a6c3285e022b0e3866a565ae8108eed8591cd4fe8d2ce86165a978d719ebf647f362d33fca29cd179fb42401cbaf3df0c614056f9c8f3cfd51e474afb6bc6974f78db8aba8e9e517fded658591ab7502bd41849462f 9B9F605F5A858107AB1EC85E6B41C8AA582CA3511EDDFB74F02F3A6598980BB9 03188da80eb03090f67cbf20eb43a18800f4ff0afd82ff1012 7ae96a2b657c07106e64479eac3434e99cf0497512f58995c1396c28719501ee e8b4011604095303ca3b8099982be09fcb9ae616 139454871199115825601409655107690713107041707059928031797758001454375765357722984094124368522288239833039114681648076688236921220737322672160740747771700911134550432053804647694904686120113087816240740184800477047157336662926249423571248823968542221753660143391485680840520336859458494803187341288580489525163 7636191aab265f21423c0a8c23425d35feb5b6b19967d8b71f22e116620c5f3b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f1151-97b1-4b18-a0fa-c85dacab84bf FFFFFFFF00000000FFFFFFFFFFFFFFFFBCE6FAADA7179E84F3B9CAC2FC632551 8CEEBCEC39ADAFB5ACA5F10CED60B1C4 8d5155894229d5e689ee01e6018a237e2cae64cd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ac635d8aa3a93e7b3ebbd55769886bc651d06b0cc53b0f63bce3c3e27d2604b 27580193559959705877849011840389048093056905856361568521428707301988689241309860865136260764883745107765439761230575 96341f1138933bc2f503fd44 646b4e6d345f64336b416f54332d4672 043B4C382CE37AA192A4019E763036F4F5DD4D7EBB938CF935318FDCED6BC28286531733C3F03C4FEE 0479BE667EF9DCBBAC55A06295CE870B07029BFCDB2DCE28D959F2815B16F81798483ADA7726A3C4655DA4FBFC0E1108A8FD17B448A68554199C47D08FFB10D4B8 e4437ed6010e88286f547fa90abfe4c42212 04A1455B334DF099DF30FC28A169A467E9E47075A90F7E650EB6B7A45C7E089FED7FBA344282CAFBD6F7E319F7C0B0BD59E2CA4BDB556D61A5 70B5E1E14031C1F70BBEFE96BDDE66F451754B4CA5F48DA241F331AA396B8D1839A855C1769B1EA14BA53308B5E2723724E090E02DB9 3f3d59ee2d2dd1dedae04d3927f0134b31ede6df0c301c64f35364dde3abfd1c 32879423AB1A0375895786C4BB46E9565FDE0B5344766740AF268ADB32322E5C 64210519e59c80e70fa7e9ab72243049feb8deecc146b9b1 0734594a-a8e7-4b1a-a6b1-cd5243059a57 0228F9D04E900069C8DC47A08534FE76D2B900B7D7EF31F5709F200C4CA205 255705fa2a306654b1f4cb03d6a750a30c250102d4988717d9ba15ab6d3e 30470ad5a005fb14ce2d9dcd87e38bc7d1b1c5facbaecbe95f190aa7a31d23c4dbbcbe06174544401a5b2c020965d8c2bd2171d3668445771f74ba084d2029d83c1c158547f3a9f1a2715be23d51ae4d3e5a1f6a7064f316933a346d3f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e05aaa9ac2b63d4a5351407b2a6bde2857a117a7d729b6f94dbc15d1174d45 4A6E0856526436F2F88DD07A341E32D04184572BEB710 BD71344799D5C7FCDC45B59FA3B9AB8F6A948BC5 FFE391E0EA186D0734ED601E4E70E3224B7309D48E2075BAC46D8C667EAE7212 C302F41D932A36CDA7A3463093D18DB78FCE476DE1A86294 3d0edcc37a3dfd716c56c0e27e2eda41a4cef3f57dc754fb44a6081572f033db 04925BE9FB01AFC6FB4D3E7D4990010F813408AB106C4F09CB7EE07868CC136FFF3357F624A21BED5263BA3A7A27483EBF6671DBEF7ABB30EBEE084E58A0B077AD42A5A0989D1EE71B1B9BC0455FB0D2C3 df05f87d9e04b22800ce916bbf2c6bb9ad8ee0c4e15e1def9d19321cd9d28cde 047B6AA5D85E572983E6FB32A7CDEBC14027B6916A894D3AEE7106FE805FC34B44 1A8F7EDA389B094C2C071E3647A8940F3C123B697578C213BE6DD9E6C8EC7335DCB228FD1EDF4A39152CBCAAF8C0398828041055F94CEEEC7E21340780FE41BD 044BA30AB5E892B4E1649DD0928643ADCD46F5882E3747DEF36E956E97 3d84f26c12238d7b4f3d516613c1759033b1a5800175d0b1 6EE3CEEB230811759F20518A0930F1A4315A827DAC 1BC5D5A5-0200-B38B-E211-CE0800F47D87 32670510020758816978083085130507043184471273380659243275938904335757337482424 4099B5A457F9D69F79213D094C4BCD4D4262210B 0667ACEB38AF4E488C407433FFAE4F1C811638DF20 00689918DBEC7E5A0DD6DFC0AA55C7 9B9F605F5A858107AB1EC85E6B41C8AACF846E86789051D37998F7B9022D759B 75ca501cc1d85b2f29de8e1d7a857ff7c3bc6cfd90c1f2f7467092fcf2fdc096 0402FE13C0537BBC11ACAA07D793DE4E6D5E5C94EEE80289070FB05D38FF58321F2E800536D538CCDAA3D9 28E9FA9E9D9F5E344D5A9E4BCF6509A7F39789F515AB8F92DDBCBD414D940E93 6b8cf07d4ca75c88957d9d67059037a4 044AD5F7048DE709AD51236DE65E4D4B482C836DC6E410664002BB3A02D4AAADACAE24817A4CA3A1B014B5270432DB27D2 020A601907B8C953CA1481EB10512F78744A3205FD 401028774D7777C7B7666D1366EA432071274F89FF01E718 04B6B3D4C356C139EB31183D4749D423958C27D2DCAF98B70164C97A2DD98F5CFF6142E0F7C8B204911F9271F0F3ECEF8C2701C307E8E4C9E183115A1554062CFB E2E31EDFC23DE7BDEBE241CE593EF5DE2295B7A9CBAEF021D385F7074CEA043AA27272A7AE602BF2A7B9033DB9ED3610C6FB85487EAE97AAC5BC7928C1950148 419f7396f68698699479230cc7edaf9f982fbfacb6377beeb756376dff466193 659EF8BA043916EEDE8911702B22 0481AEE4BDD82ED9645A21322E9C4C6A9385ED9F70B5D916C1B43B62EEF4D0098EFF3B1F78E2D0D48D50D1687B93B97D5F7C6D5047406A5E688B352209BCB9F8227DDE385D566332ECC0EABFA9CF7822FDF209F70024A57B1AA000C55B881F8111B2DCDE494A5F485E5BCA4BD88A2763AED1CA2B2FA8F0540678CD1E0F3AD80892 D7C134AA264366862A18302575D1D787B09F075797DA89F57EC8C0FF 6A941977BA9F6A435199ACFC51067ED587F519C5ECB541B8E44111DE1D40 0713612DCDDCB40AAB946BDA29CA91F73AF958AFD9 5EEEFCA380D02919DC2C6558BB6D8A5D 9162fbe73984472a0a9d0590 021085E2755381DCCCE3C1557AFA10C2F0C0C2825646C5B34A394CBCFA8BC16B22E7E789E927BE216F02E1FB136A5F 0443BD7E9AFB53D8B85289BCC48EE5BFE6F20137D10A087EB6E7871E2A10A599C710AF8D0D39E2061114FDD05545EC1CC8AB4093247F77275E0743FFED117182EAA9C77877AAAC6AC7D35245D1692E8EE1 1053CDE42C14D696E67687561517533BF3F83345 3826F008A8C51D7B95284D9D03FF0E00CE2CD723A a98631c597d04f54e33229edd283453bf56bb8849d06e9560557eb6e0343abc8 C49D360886E704936A6678E1139D26B7819F7E90 7BC382C63D8C150C3C72080ACE05AFA0C2BEA28E4FB22787139165EFBA91F90F8AA5814A503AD4EB04A8C7DD22CE2826 03eea2bae7e1497842f2de7769cfe9c989c072ad696f48034a 127971af8721782ecffa3 64210519E59C80E70FA7E9AB72243049FEB8DEECC146B9B1 77E2B07370EB0F832A6DD5B62DFC88CD06BB84BE 0238af09d98727705120c921bb5e9e26296a3cdcf2f35757a0eafd87b830e7 7d7374168ffe3471b60a857686a19475d3bfa2ff 115792089210356248762697446949407573530086143415290314195533631308867097853951 71169be7330b3038edb025f1 0405F939258DB7DD90E1934F8C70B0DFEC2EED25B8557EAC9C80E2E198F8CDBECD86B1205303676854FE24141CB98FE6D4B20D02B4516FF702350EDDB0826779C813F0DF45BE8112F4 C8619ED45A62E6212E1160349E2BFA844439FAFC2A3FD1638F9E f1a81677e76ad95e922de87f0f8ce2a8dcfa2fd330f46465906bb2910eb14ed7 4406bc6539bd8010f14847c91849f26a0abfc5079614a32a9fb51fdcb16ca0d3 DC9203E514A721875485A529D2C722FB187BC8980EB866644DE41C68E143064546E861C0E2C9EDD92ADE71F46FCF50FF2AD97F951FDA9F2A2EB6546F39689BD3 e9e642599d355f37c97ffd3567120b8e25c9cd43e927b3a9670fbec5d890141922d2c3b3ad2480093799869d1e846aab49fab0ad26d2ce6a22219d470bce7d777d4a21fbe9c270b57f607002f3cef8393694cf45ee3688c11a8c56ab127a3daf 41058363725152142129326129780047268409114441015993725554835256314039467401291 2472E2D0197C49363F1FE7F5B6DB075D52B6947D135D8CA445805D39BC345626089687742B6329E70680231988 31b62389032d61ade56b8b3c7aac544dca487444f93c28c69d4a33cffe2e4a57 9d83ca74f52b5acdc7b4a55d5423aeecaa9358273d23ee7f1621b1cac3865a8d fd7f53811d75122952df4a9c2eece4e7f611b7523cef4400c31e3f80b6512669455d402251fb593d8d58fabfc5f5ba30f6cb9b556cd7813b801d346ff26660b76b9950a5a49f9fe8047b1022c24fbba9d7feb7c61bf83b57e7c6a8a6150f04fb83f6d3c51ec3023554135a169132f675f3ae2b61d72aeff22203199dd14801c7 D35E472036BC4FB7E13C785ED201E065F98FCFA6F6F40DEF4F92B9EC7893EC28FCD412B1F1B32E24 7167EFC92BB2E3CE7C8AAAFF34E12A9C557003D7C73A6FAF003F99F6CC8482E540F7 3d3c1f76dddc277db059ad5428ec989410f93477cf482747c6af3ad1db158df3 02A29EF207D0E9B6C55CD260B306C7E007AC491CA1B10C62334A9E8DCD8D20FB7 002757A1114D696E6768756151755316C05E0BD4 cc22d6dfb95c6b25e49c0d6364a4e5980c393aa21668d953 A9FB57DBA1EEA9BC3E660A909D838D726E3BF623D52620282013481D1F6E5374 133531813272720673433859519948319001217942375967847486899482359599369642528734712461590403327731821410328012529253871914788598993103310567744136196364803064721377826656898686468463277710150809401182608770201615324990468332931294920912776241137878030224355746606283971659376426832674269780880061631528163475887 036b17d1f2e12c4247f8bce6e563a440f277037d812deb33a0f4a13945d898c296 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 68A5E62CA9CE6C1C299803A6C1530B514E182AD8B0042A59CAD29F43 0401A57A6A7B26CA5EF52FCDB816479700B3ADC94ED1FE674C06E695BABA1D E8C2505DEDFC86DDC1BD0B2B6667F1DA34B82574761CB0E879BD081CFD0B6265EE3CB090F30D27614CB4574010DA90DD862EF9D4EBEE4761503190785A71C760 32010857077C5431123A46B808906756F543423E8D27877578125778AC76 375100c75a04ee9ebdfc5583b94605c5b58d7757af021db78e303a7e51354308 d8eccdc093ff3729b4e490a4a7aa611dc9070c4d41ea78c640a519cda914ad3d 0620048D28BCBD03B6249C99182B7C8CD19700C362C46A01 f293bc22b9b22cbfe2047f908cbeec37961bc63f8fe909d04d308b8e41ca8626 0429A0B6A887A983E9730988A68727A8B2D126C44CC2CC7B2A6555193035DC76310804F12E549BDB011C103089E73510ACB275FC312A5DC6B76553F0CA 14839ac4-7d7e-415c-9a42-167340cf2339 aad7ecc278f0aa1f46f5e0df86b5ea7b7e552734be56ad05e870e7be636f7824 040303001D34B856296C16C0D40D3CD7750A93D1D2955FA80AA5F40FC8DB7B2ABDBDE53950F4C0D293CDD711A35B67FB1499AE60038614F1394ABFA3B4C850D927E1E7769C8EEC2D19037BF27342DA639B6DCCFFFEB73D69D78C6C27A6009CBBCA1980F8533921E8A684423E43BAB08A576291AF8F461BB2A8B3531D2F0485C19B16E2F1516E23DD3C1A4827AF1B8AC15B e7aa40eddd2ca821955e51573714a33f087f63d7f61907dbd3bff2d6c13d9995 03F7061798EB99E238FD6F1BF95B48FEEB4854252B 460849df2fd0f5d9e4c20fb6f3b58e62 662C61C430D84EA4FE66A7733D0B76B7BF93EBC4AF2F49256AE58101FEE92B04 04C0A0647EAAB6A48753B033C56CB0F0900A2F5C4853375FD614B690866ABD5BB88B5F4828C1490002E6773FA2FA299B8F 08b5cb92d52348ac2be61a75f7adbb8d9b1947608dccfff85d9643dd44324320 FFFFFFFE0000000075A30D1B9038A115 10E723AB14D696E6768756151756FEBF8FCB49A9 036768ae8e18bb92cfcf005c949aa2c6d94853d0e660bbf854b1c9505fe95a 1C97BEFC54BD7A8B65ACF89F81D4D4ADC565FA45 9722010dc2bc378bf06ba5ef93fa02c403ab22456f060b2dba9d7cc87b657a23 78113ae73b20b8ad0c0b5aa1324fb3902e3ee15d29f6f6aa30cd64c6e99c4277 b0d2115e-c708-4bae-b42e-d389df704493 0101D556572AABAC800101D556572AABAC8001022D5C91DD173F8FB561DA6899164443051D 3DF91610A83441CAEA9863BC2DED5D5AA8253AA10A2EF1C98B9AC8B57F1117A72BF2C7B9E7C1AC4D77FC94CADC083E67984050B75EBAE5DD2809BD638016F723
安全提示信息 域配置配置为信任 bundled certs @raw/inter_accor
Scope: authentication.accorhotels.com
安全提示信息 域配置配置为信任 bundled certs @raw/inter_imperva
Scope: authentication.accorhotels.com
安全提示信息 域配置配置为信任 bundled certs @raw/root_cert
Scope: login.accor.com
安全提示信息 Certificate pinning expires on 2029-03-18
Scope: login.accor.com After this date pinning will be disabled. [Pin: cGuxAXyFXFkWm61cF4HPWX8S0srS9j0aSqN0k4AP+4A= Digest: SHA-256]
安全提示信息 域配置配置为信任 bundled certs @raw/root_cert
Scope: api.accor.com
安全提示信息 Certificate pinning expires on 2029-03-18
Scope: api.accor.com After this date pinning will be disabled. [Pin: cGuxAXyFXFkWm61cF4HPWX8S0srS9j0aSqN0k4AP+4A= Digest: SHA-256]
安全提示信息 域配置配置为信任 bundled certs @raw/root_cert
Scope: secure.accor.com
安全提示信息 Certificate pinning expires on 2029-03-18
Scope: secure.accor.com After this date pinning will be disabled. [Pin: cGuxAXyFXFkWm61cF4HPWX8S0srS9j0aSqN0k4AP+4A= Digest: SHA-256]
安全提示信息 应用程序记录日志信息,不得记录敏感信息
应用程序记录日志信息,不得记录敏感信息 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#logs Files: com/accor/data/repository/batch/BatchRepositoryImpl.java, line(s) 18 com/accor/designsystem/compose/calendar/s.java, line(s) 209 com/accor/funnel/checkout/feature/basket/personaldetails/mapper/b.java, line(s) 60 com/accor/tracking/trackit/j.java, line(s) 26 com/accor/tracking/trackit/log/d.java, line(s) 20,25,37 com/apollographql/apollo3/exception/ApolloExceptionHandlerKt.java, line(s) 20 com/apollographql/apollo3/network/ws/SubscriptionWsProtocol$connectionInit$2.java, line(s) 56 com/apollographql/apollo3/network/ws/WebSocketNetworkTransport$execute$3.java, line(s) 67 com/appsflyer/internal/AFh1ySDK.java, line(s) 56,102,71,60,66,64 com/assaabloy/seos/access/SessionImpl.java, line(s) 182,186,183 com/batch/android/c0/f.java, line(s) 95,305,94,304 com/batch/android/c0/h.java, line(s) 411,420 com/batch/android/d/a.java, line(s) 153,158,165,169,185,206 com/batch/android/d/b.java, line(s) 30 com/batch/android/e/r.java, line(s) 39,124,82,167,18,26,111,52,137,65,150 com/batch/android/f0/b.java, line(s) 176 com/batch/android/h0/b.java, line(s) 34,39,54,63,68,105,147,181,195,33,38,53,62,67,104,146,180,194 com/batch/android/i0/b.java, line(s) 375 com/batch/android/i0/c.java, line(s) 103,121 com/cardinalcommerce/a/C1260fa.java, line(s) 91,127 com/cardinalcommerce/a/C1512xb.java, line(s) 22,114,163 com/cardinalcommerce/a/C5846fa.java, line(s) 93,129 com/cardinalcommerce/a/C6098xb.java, line(s) 26,156,205 com/cardinalcommerce/a/Ic.java, line(s) 58 com/cardinalcommerce/a/S.java, line(s) 466 com/caverock/androidsvg/CSSParser.java, line(s) 1322,1207 com/caverock/androidsvg/SVGParser.java, line(s) 2687,2736,2760,3774,1728,1765,1782,2765 com/caverock/androidsvg/d.java, line(s) 475,2590,2888,505,950,956 com/clarisite/mobile/o/a.java, line(s) 52 com/halilibo/richtext/layout/MarkdownKt.java, line(s) 379,387,391,400 com/halilibo/richtext/markdown/MarkdownKt.java, line(s) 386,394,398,407 com/lockup/lockuplibrary/LUPLockUpBridge.java, line(s) 118,137,319 com/lockup/lockuplibrary/a.java, line(s) 43,47 com/lockup/lockuplibrary/g.java, line(s) 20 com/onetrust/otpublishers/headless/Internal/Log/OTLogger.java, line(s) 34,43,61,77,81,107,137,144,37,31,90,98,100,103,133,40,46 com/onetrust/otpublishers/headless/cmp/api/c.java, line(s) 78 com/qualtrics/digital/ActionSet.java, line(s) 89,90,101,125,140,152 com/qualtrics/digital/DateExpression.java, line(s) 88,108 com/qualtrics/digital/DayExpression.java, line(s) 37 com/qualtrics/digital/EmbeddedFeedbackOrchestrator.java, line(s) 552 com/qualtrics/digital/InterceptDefinition.java, line(s) 40 com/qualtrics/digital/Properties.java, line(s) 29,171 com/qualtrics/digital/Qualtrics.java, line(s) 44,59,93,158,240 com/qualtrics/digital/QualtricsLog.java, line(s) 13,27,34,18 com/qualtrics/digital/QualtricsPopOverFragment.java, line(s) 381 com/qualtrics/digital/QualtricsSurveyActivity.java, line(s) 56 com/qualtrics/digital/ServiceInterceptor.java, line(s) 49 com/qualtrics/digital/TimeExpression.java, line(s) 32,40 com/qualtrics/digital/VariableExpression.java, line(s) 49,70,72,184 com/qualtrics/digital/ViewCountExpression.java, line(s) 26,80,100 com/qualtrics/digital/WebViewInterface.java, line(s) 21 com/qualtrics/digital/resolvers/CustomPropertyResolver.java, line(s) 26,57,98,133 com/qualtrics/digital/resolvers/DateTimeTypeResolvers.java, line(s) 40 com/qualtrics/digital/resolvers/SamplingResolver.java, line(s) 11 com/qualtrics/digital/resolvers/TimeSpentInAppResolver.java, line(s) 19,22 com/qualtrics/digital/resolvers/ViewCountResolver.java, line(s) 19,43 com/splunk/rum/A0.java, line(s) 95,98,112,126,85 com/splunk/rum/B.java, line(s) 36,45,166 com/splunk/rum/C0.java, line(s) 131 com/splunk/rum/C1638k.java, line(s) 27 com/splunk/rum/C1640m.java, line(s) 71 com/splunk/rum/C1643p.java, line(s) 91,103,85 com/splunk/rum/C1644q.java, line(s) 23,37,46,53,61 com/splunk/rum/C1645s.java, line(s) 111,120,56,93,114,141 com/splunk/rum/C7357k.java, line(s) 28 com/splunk/rum/C7359m.java, line(s) 74 com/splunk/rum/C7362p.java, line(s) 93,105,87 com/splunk/rum/C7363q.java, line(s) 24,38,47,54,62 com/splunk/rum/C7364s.java, line(s) 114,123,58,96,117,144 com/splunk/rum/F0.java, line(s) 68,72 com/splunk/rum/H.java, line(s) 52,41,48 com/splunk/rum/internal/g.java, line(s) 15 com/splunk/rum/m0.java, line(s) 70,85,76 com/splunk/rum/o0.java, line(s) 118 com/threatmetrix/TrustDefender/TMXProfilingConnections/upuppp.java, line(s) 249,302,353,214,244,255,301,313,348,359,283,294,325,341,374 com/threatmetrix/TrustDefender/ttcctt.java, line(s) 141,167,189,98,140,147,166,173,188,195,157,162,179,184,201 com/utc/fs/trframework/A.java, line(s) 33,42 es/lockup/StaymywaySDK/data/auto_log/model/OpeningLog.java, line(s) 189,189,189,189 es/lockup/StaymywaySDK/library/onity/a.java, line(s) 29,41,53 es/lockup/StaymywaySDK/library/onity/l.java, line(s) 67,76,105,126,133,165,185,193,199,211,217,222,232,243,247,253,259,263,266,281,284,286,301,304,307,66,292 es/lockup/StaymywaySDK/service/SMWCloudService.java, line(s) 229,232,248,256 io/opentelemetry/android/OpenTelemetryRumBuilder.java, line(s) 374 io/opentelemetry/android/features/diskbuffering/scheduler/DefaultExportScheduler.java, line(s) 30 io/opentelemetry/android/instrumentation/network/CurrentNetworkProvider.java, line(s) 30,38,98 io/opentelemetry/android/instrumentation/slowrendering/SlowRenderListener.java, line(s) 101,104,126 io/opentelemetry/android/instrumentation/slowrendering/SlowRenderingDetectorBuilder.java, line(s) 19 io/opentelemetry/android/instrumentation/startup/AppStartupTimer.java, line(s) 40,67 io/opentelemetry/android/internal/features/persistence/DiskManager.java, line(s) 48,60,56 io/opentelemetry/android/internal/services/CacheStorageService.java, line(s) 22,37,31 io/opentelemetry/exporter/logging/SystemOutLogRecordExporter.java, line(s) 55,70 net/sqlcipher/AbstractCursor.java, line(s) 139 net/sqlcipher/BulkCursorToCursorAdaptor.java, line(s) 44,66,106,117,161,188,213,36,82,199 net/sqlcipher/DatabaseUtils.java, line(s) 117,158,598,606 net/sqlcipher/DefaultDatabaseErrorHandler.java, line(s) 14,24,26,30,18 net/sqlcipher/database/SQLiteCompiledSql.java, line(s) 52,64,86,97,74 net/sqlcipher/database/SQLiteContentHelper.java, line(s) 25 net/sqlcipher/database/SQLiteCursor.java, line(s) 151,221,261,283 net/sqlcipher/database/SQLiteDatabase.java, line(s) 128,130,683,334,537,712,862,922,1009,1095,1269,122,923,1259,496,515,723,735,924,1065,1076,1260,1337,1345,510 net/sqlcipher/database/SQLiteDebug.java, line(s) 8,9,10,11,12,13 net/sqlcipher/database/SQLiteOpenHelper.java, line(s) 70,91 net/sqlcipher/database/SQLiteProgram.java, line(s) 45,51 net/sqlcipher/database/SQLiteQuery.java, line(s) 115 net/sqlcipher/database/SQLiteQueryBuilder.java, line(s) 222,221 net/sqlcipher/database/SqliteWrapper.java, line(s) 29,39,53,63,73
安全提示信息 此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它
此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04b-Mobile-App-Security-Testing.md#clipboard Files: com/accor/core/presentation/ui/F.java, line(s) 8,138 com/batch/android/b/a.java, line(s) 4,29 com/batch/android/i/a.java, line(s) 4,65 com/onetrust/otpublishers/headless/UI/fragment/V.java, line(s) 5,547
安全提示信息 此应用程序使用SQL Cipher。SQLCipher为sqlite数据库文件提供256位AES加密
此应用程序使用SQL Cipher。SQLCipher为sqlite数据库文件提供256位AES加密 Files: com/utc/fs/trframework/g0.java, line(s) 28,4
安全提示信息 应用与Firebase数据库通信
该应用与位于 https://api-project-333446645058.firebaseio.com 的 Firebase 数据库进行通信
已通过安全项 此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击
此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#testing-custom-certificate-stores-and-certificate-pinning-mstg-network-4 Files: com/accor/data/proxy/core/network/g.java, line(s) 104,104 com/accor/tracking/trackit/interactionstudio/e.java, line(s) 64,64 com/clarisite/mobile/g/i.java, line(s) 478,450 com/clarisite/mobile/v/b.java, line(s) 115,113,115,61,108,143,112,112 com/clarisite/mobile/v/f.java, line(s) 40,24 com/legic/mobile/sdk/f/d.java, line(s) 79,78,72,77,77 com/onetrust/otpublishers/headless/Internal/Helper/F.java, line(s) 80,121,129,80,121,129 com/onetrust/otpublishers/headless/Internal/Network/l.java, line(s) 232,270,232,270 com/onetrust/otpublishers/headless/UI/TVUI/fragments/A.java, line(s) 261,261 com/onetrust/otpublishers/headless/UI/fragment/a1.java, line(s) 184,184 com/qualtrics/digital/LatencyReportingService.java, line(s) 41,41 com/qualtrics/digital/SiteInterceptService.java, line(s) 127,127 es/lockup/StaymywaySDK/base/retrofit/a.java, line(s) 113,113 es/lockup/StaymywaySDK/data/auto_log/e.java, line(s) 48,48 es/lockup/StaymywaySDK/data/opening/b.java, line(s) 40,40 es/lockup/StaymywaySDK/data/reservation/b.java, line(s) 160,180,160,180 es/lockup/StaymywaySDK/domain/interactor/opening/c.java, line(s) 542,603 io/opentelemetry/exporter/internal/TlsUtil.java, line(s) 103,83,102,98,82,101,101
已通过安全项 此应用程序可能具有Root检测功能
此应用程序可能具有Root检测功能 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1 Files: com/cardinalcommerce/a/setProgressBackgroundTintBlendMode.java, line(s) 143,106,106,106,106,106,106 com/clarisite/mobile/z/B.java, line(s) 30,81
已通过安全项 此应用程序使用Safety Net API。
此应用程序使用Safety Net API。 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#safetynet Files: com/threatmetrix/TrustDefender/luulll.java, line(s) 53,54
已通过安全项 Firebase远程配置已禁用
Firebase远程配置URL ( https://firebaseremoteconfig.googleapis.com/v1/projects/333446645058/namespaces/firebase:fetch?key=AIzaSyANbI53-5ULv7JhKiCPY02GPMhm5v1B32c ) 已禁用。响应内容如下所示: 响应码是 403