exploitDog

GHSA-ww4w-r53v-2m63

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.4

Описание

Rakuten card App for iOS 5.2.0 through 5.2.4 does not verify SSL certificates which might allow remote attackers to execute man-in-the-middle attacks.

Rakuten card App for iOS 5.2.0 through 5.2.4 does not verify SSL certificates which might allow remote attackers to execute man-in-the-middle attacks.

Ссылки

EPSS

Процентиль: 71%

0.00664

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2015-2988

CVSS3: 7.4

nvd

больше 8 лет назад

Rakuten card App for iOS 5.2.0 through 5.2.4 does not verify SSL certificates which might allow remote attackers to execute man-in-the-middle attacks.

EPSS

Процентиль: 71%

0.00664

Низкий

7.4 High

CVSS3

CVE ID

Дефекты

CWE-295