Vulnerabilities

CVE-2018-0591

by Fred · 14/05/2018

The KINEPASS App for Android Ver 3.1.1 and earlier, and for iOS Ver 3.1.2 and earlier do not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Date published : 2018-05-14

https://jvn.jp/en/jp/JVN83671755/

https://itunes.apple.com/us/app/kinepasu-apuridekantan-bian/id637453055?mt=8

Similar

Tags: Cybersecurity Alert