CVE-2020-5526

2020-01-31T04:15:00
ID CVE-2020-5526
Type cve
Reporter vultures@jpcert.or.jp
Modified 2020-02-10T17:18:00

Description

The AWMS Mobile App for Android 2.0.0 to 2.0.5 and for iOS 2.0.0 to 2.0.8 does not verify X.509 certificates from servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.