Design/Logic Flaw

2013-01-2223:55:00

PRIOn knowledge base

www.prio-n.com

6.3 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

59.4%

JSON

Call of Duty Elite for iOS 2.0.1 does not properly validate the server SSL certificate, which allows remote attackers to obtain sensitive information via a Man-in-the-Middle (MITM) attack.

CPENameOperatorVersion
call_of_duty_eliteeq2.0.1

CPE	Name	Operator	Version
	call_of_duty_elite	eq	2.0.1

References

osvdb.org/89070

secunia.com/advisories/51366

www.securityfocus.com/bid/57225

exchange.xforce.ibmcloud.com/vulnerabilities/81116