CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS
Percentile
41.0%
sp mode mail provided by NTT DOCOMO contains an issue in the verification of the SSL server certificate.
Since no warning is issued when connecting to a server that is using an invalid SSL server certificate, a remote attacker may be able to intercept communications.
Update the software
Update to the latest version according to the information provided by the developer.
According to the developer, only sp mode mail applications for Android are affected.