Severity

8.7

Vulnerability Type

Cleartext Transmission of Sensitive Information (CWE-319)

Summary

An unauthenticated remote attacker can influence the communication due to the lack of encryption of sensitive data via a MITM. Charging is not affected.