PT-2026-39937 · Kura Sushi · Kura Sushi Official App

Published

2026-05-12

·

Updated

2026-05-12

·

CVE-2026-41872

CVSS v3.1

7.4

High

VectorAV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions Kura Sushi Official App (affected versions not specified)
Description The application is subject to improper certificate validation, which occurs when a system fails to properly verify the authenticity of a digital certificate. This flaw allows a man-in-the-middle attack, enabling an attacker to eavesdrop on or alter communications regarding push notifications between the application and the server.
Recommendations Update the application to the latest version.

Fix

Improper Certificate Validation

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-41872

Affected Products

Kura Sushi Official App