0.001 Low
EPSS
Percentile
46.2%
WebHybridClient.java in PayPal 5.3 and earlier for Android ignores SSL errors, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information.
secunia.com/advisories/57351
exchange.xforce.ibmcloud.com/vulnerabilities/92098
labs.mwrinfosecurity.com/advisories/paypal-remote-code-execution/