PT-2017-7936 · Photopt · Photopt
Yuto Iso
·
Publicado
2017-04-21
·
Atualizado
2017-04-26
·
CVE-2016-1198
CVSS v3.1
5.9
Média
| Vetor | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Photopt for Android versions prior to 2.0.1
Description
The issue is related to the failure of the application to verify SSL certificates. This could potentially allow for man-in-the-middle attacks.
Recommendations
For versions prior to 2.0.1, update to version 2.0.1 or later to resolve the issue.
Correção
Improper Certificate Validation
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Photopt