Summary: In the Orbitz application 19.31.1 for Android, the username and password are stored in the log during authentication, and may be available to attackers via logcat.Published: Tuesday, October 15, 2019 - 17:15cvss: