CVE-2006-4614

CVE-2006-4614 is a medium-severity vulnerability in Pocket Pc with a CVSS 2.0 base score of 4.9. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.

Key facts

Description

PDAapps Verichat for Pocket PC 1.30bh stores usernames and passwords in plaintext in the Windows Mobile registry, which allows local users to obtain sensitive information via keys under \HKEY_CURRENT_USER\Software\PDAapps\VeriChat.

Frequently asked questions

What is CVE-2006-4614?
PDAapps Verichat for Pocket PC 1.30bh stores usernames and passwords in plaintext in the Windows Mobile registry, which allows local users to obtain sensitive information via keys under \HKEY_CURRENT_USER\Software\PDAapps\VeriChat.
How severe is CVE-2006-4614?
CVE-2006-4614 has a CVSS 2.0 base score of 4.9, rated medium severity.
Is CVE-2006-4614 being actively exploited?
It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 0% (25th percentile), an estimate of the probability of exploitation in the next 30 days.
What products are affected by CVE-2006-4614?
CVE-2006-4614 affects Pocket Pc. See the affected-products list for the exact vulnerable versions.
How do I fix CVE-2006-4614?
Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
When was CVE-2006-4614 published?
CVE-2006-4614 was published on 2006-09-07 and last updated on 2026-06-16.

References

Affected products (1)