CVE-2014-7671 in Tekno Apsisinformazioni

Riassunto

di MITRE

The Tekno Apsis (aka com.teknoapsis) application 2.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Prenotare

03/10/2014

Divulgazione

21/10/2014

Moderazione

accettato

CPE

pronto

EPSS

0.00266

KEV

no

Attività

molto basso

Fonti

Do you know our Splunk app?

Download it now for free!