Описание
The Toyoko Inn official App for iOS versions prior to 1.13.0 and Toyoko Inn official App for Android versions prior 1.3.14 don't properly verify server certificates, which allows a man-in-the-middle attacker to spoof servers and obtain sensitive information via a crafted certificate.
Ссылки
EPSS
Процентиль: 30%
0.0011
Низкий
4.8 Medium
CVSS3
Дефекты
CWE-295
Связанные уязвимости
CVSS3: 4.8
github
почти 2 года назад
The Toyoko Inn official App for iOS versions prior to 1.13.0 and Toyoko Inn official App for Android versions prior 1.3.14 don't properly verify server certificates, which allows a man-in-the-middle attacker to spoof servers and obtain sensitive information via a crafted certificate.
EPSS
Процентиль: 30%
0.0011
Низкий
4.8 Medium
CVSS3
Дефекты
CWE-295