PT-2022-10825 · Motorola · Motorola Ready For+1

Published

2022-04-22

Updated

2022-05-09

CVE-2021-3898

CVSS v3.1

6.8

Medium

Vector

AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Motorola Ready For and Motorola Device Help Android applications versions prior to 2021-04-08

Description The issue is related to the improper verification of the server certificate in the affected applications, which could allow an attacker to access the communication channel.

Recommendations For versions prior to 2021-04-08, update the Motorola Ready For and Motorola Device Help Android applications to a version released after 2021-04-08 to properly verify the server certificate and secure the communication channel.

Fix

Improper Certificate Validation

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-295

Related Identifiers

CVE-2021-3898

Affected Products

Motorola Device Help

Motorola Ready For

PT-2022-10825 · Motorola · Motorola Ready For+1

CVE-2021-3898

Weakness Enumeration

Related Identifiers

Affected Products

References · 5