Bug #1682: Clear text traffic is Enabled For App - Dr.Carrot Mobile - Redmine

Actions

Copy link

Bug #1682

open

Support #1680: Mobsf - Security Issuse

Clear text traffic is Enabled For App

Added by Misbha G 5 months ago. Updated 5 months ago.

Status:

Resolved

Priority:

Urgent

Assignee:

Priyadharshini B

Start date:

07/11/2025

Due date:

% Done:

Estimated time:

Description

Fix the following issue

"[android:usesCleartextTraffic=true]
The app intends to use cleartext network traffic, such as cleartext HTTP, FTP stacks, DownloadManager, and MediaPlayer. The default value for apps that target API level 27 or lower is ""true"". Apps that target API level 28 or higher default to ""false"". The key reason for avoiding cleartext traffic is the lack of confidentiality, authenticity, and protections against tampering; a network attacker can eavesdrop on transmitted data and also modify it without being detected."

History
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Dr.Carrot Mobile

Bug #1682

Clear text traffic is Enabled For App

Updated by Priyadharshini B 5 months ago