CVE-2020-5520

2020-01-2709:35:27

jpcert

www.cve.org

AI Score

6.8

Confidence

High

EPSS

0.001

Percentile

31.6%

JSON

The netprint App for iOS 3.2.3 and earlier does not verify X.509 certificates from servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CNA Affected

[
  {
    "product": "netprint App for iOS",
    "vendor": "Fuji Xerox Co.,Ltd.",
    "versions": [
      {
        "status": "affected",
        "version": "3.2.3 and earlier"
      }
    ]
  }
]