PT-2026-39937 · Kura Sushi · Kura Sushi Official App
Published
2026-05-12
·
Updated
2026-05-12
·
CVE-2026-41872
CVSS v3.1
7.4
High
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Kura Sushi Official App (affected versions not specified)
Description
The application is subject to improper certificate validation, which occurs when a system fails to properly verify the authenticity of a digital certificate. This flaw allows a man-in-the-middle attack, enabling an attacker to eavesdrop on or alter communications regarding push notifications between the application and the server.
Recommendations
Update the application to the latest version.
Fix
Improper Certificate Validation
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Kura Sushi Official App