Gaku Taniguchi

Researcher fromRiskFinder,inc.
#11627of 53,633
23.6Total CVSS
Vulnerabilities · 4
Medium
4
PT-2017-9356
5.9
2017-06-09
Mobigate · Mobigate App For Android · CVE-2016-7805
**Name of the Vulnerable Software and Affected Versions** mobiGate App for Android versions 2.2.1.2 and earlier mobiGate App for iOS versions 2.2.4.1 and earlier **Description** The issue allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate, as the app does not verify X.509 certificates from SSL servers. **Recommendations** For mobiGate App for Android versions 2.2.1.2 and earlier, update to a version that verifies X.509 certificates from SSL servers. For mobiGate App for iOS versions 2.2.4.1 and earlier, update to a version that verifies X.509 certificates from SSL servers.
PT-2017-8538
5.9
2017-04-21
Waon · Waon Service Application · CVE-2016-4832
**Name of the Vulnerable Software and Affected Versions** WAON "Service Application" for Android versions 1.4.1 and earlier **Description** The issue is related to the failure of the application to verify SSL certificates. **Recommendations** For WAON "Service Application" for Android versions 1.4.1 and earlier, update to a version that properly verifies SSL certificates.
PT-2017-8543
5.9
2017-04-21
Google · Coordinate Plus App For Android · CVE-2016-4840
**Name of the Vulnerable Software and Affected Versions** Coordinate Plus App for Android versions 1.0.2 and earlier Coordinate Plus App for iOS versions 1.0.2 and earlier **Description** The issue concerns the failure to verify SSL certificates. This could potentially allow for man-in-the-middle attacks. **Recommendations** For Coordinate Plus App for Android versions 1.0.2 and earlier, update to a version that properly verifies SSL certificates. For Coordinate Plus App for iOS versions 1.0.2 and earlier, update to a version that properly verifies SSL certificates.
PT-2017-8535
5.9
2017-04-20
Dmmfx · Dmmfx Trade · CVE-2016-4818
**Name of the Vulnerable Software and Affected Versions** DMMFX Trade for Android versions 1.5.0 and earlier DMMFX DEMO Trade for Android versions 1.5.0 and earlier GAITAMEJAPAN FX Trade for Android versions 1.4.0 and earlier **Description** The issue is related to the failure to verify SSL certificates. This could potentially allow for man-in-the-middle attacks. **Recommendations** For DMMFX Trade for Android versions 1.5.0 and earlier, update to a version that properly verifies SSL certificates. For DMMFX DEMO Trade for Android versions 1.5.0 and earlier, update to a version that properly verifies SSL certificates. For GAITAMEJAPAN FX Trade for Android versions 1.4.0 and earlier, update to a version that properly verifies SSL certificates.