The Radio Javan app 9.3.4 through 9.6.1 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
CPE | Name | Operator | Version |
---|---|---|---|
radio_javan | eq | 9.3.4 | |
radio_javan | eq | 9.4 | |
radio_javan | eq | 9.4.1 | |
radio_javan | eq | 9.4.2 | |
radio_javan | eq | 9.4.3 | |
radio_javan | eq | 9.4.4 | |
radio_javan | eq | 9.4.5 | |
radio_javan | eq | 9.5 | |
radio_javan | eq | 9.5.1 | |
radio_javan | eq | 9.6 |