exploitDog

GHSA-hx2w-hj9r-4gwr

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.4

Описание

The mAadhaar application 1.2.7 for Android lacks SSL Certificate Validation, leading to man-in-the-middle attacks against requests for FAQs or Help.

The mAadhaar application 1.2.7 for Android lacks SSL Certificate Validation, leading to man-in-the-middle attacks against requests for FAQs or Help.

Ссылки

EPSS

Процентиль: 36%

0.00154

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2019-14516

CVSS3: 7.4

nvd

больше 6 лет назад

The mAadhaar application 1.2.7 for Android lacks SSL Certificate Validation, leading to man-in-the-middle attacks against requests for FAQs or Help.

EPSS

Процентиль: 36%

0.00154

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-295