PT-2026-39937 · Epg · "Kura Sushi Official App" For Android+1
Published
2026-05-12
·
Updated
2026-05-12
·
CVE-2026-41872
CVSS v3.1
7.4
High
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N |
"Kura Sushi Official App" provided by EPG, Inc. is vulnerable to improper certificate validation. A man-in-the-middle attack may allow eavesdropping on, or altering, the communication on push notifications between the affected application and the relevant server.
Fix
Improper Certificate Validation
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
"Kura Sushi Official App" For Android
"Kura Sushi Official App" For Ios