exploitDog

GHSA-fvvh-qmrh-fp83

Опубликовано: 15 июн. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 3.7

Описание

'Mobaoku-Auction&Flea Market' App for iOS versions prior to 5.5.16 improperly verifies server certificates, which may allow an attacker to eavesdrop on an encrypted communication via a man-in-the-middle attack.

'Mobaoku-Auction&Flea Market' App for iOS versions prior to 5.5.16 improperly verifies server certificates, which may allow an attacker to eavesdrop on an encrypted communication via a man-in-the-middle attack.

Ссылки

EPSS

Процентиль: 30%

0.00111

Низкий

3.7 Low

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2022-29482

CVSS3: 3.7

nvd

больше 3 лет назад

'Mobaoku-Auction&Flea Market' App for iOS versions prior to 5.5.16 improperly verifies server certificates, which may allow an attacker to eavesdrop on an encrypted communication via a man-in-the-middle attack.

EPSS

Процентиль: 30%

0.00111

Низкий

3.7 Low

CVSS3

CVE ID

Дефекты

CWE-295