Advisory of CVE-2021–43512
May 30, 2022
CVE-2021–43512:
An issue was discovered in FlightRadar24 v8.9.0, v8.10.0, v8.10.2, v8.10.3, v8.10.4 for Android, allows attackers to cause unspecified consequences due to being able to decompile a local application and extract their API keys.
The issue was discovered by Janmejaya Swain(https://www.linkedin.com/in/janmejayaswainofficial) which is me 😅 by the way. Now the issue has been fixed properly by application team.
I don't have permission to disclose that vulnerability. As that issue was very sensitive for that organization. So I’m not disclosing about that vulnerability.