7 matches found
EUVD-2018-8033
Malware in sbrugna...
CVE-2018-16179
The Mizuho Direct App for Android version 3.13.0 and earlier does not verify server certificates, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2018-16179
The Mizuho Direct App for Android version 3.13.0 and earlier does not verify server certificates, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Code injection
The Mizuho Direct App for Android version 3.13.0 and earlier does not verify server certificates, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2018-16179
The Mizuho Direct App for Android version 3.13.0 and earlier does not verify server certificates, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2018-16179
CVE-2018-16179 affects the Mizuho Direct App for Android (version 3.13.0 and earlier). The root cause is that the app does not verify the SSL server certificate, enabling potential man-in-the-middle attacks to intercept sensitive information via crafted certificates. Documents consistently descri...
Mizuho Bank Mizuho Direct App for Android fails to verify SSL server certificates
Overview Mizuho Bank Mizuho Direct App for Android fails to verify SSL server certificates. Mizuho Bank Mizuho Direct App for Android provided by Mizuho Bank, Ltd. fails to verify SSL server certificates CWE-295. Reo Yoshida reported this vulnerability to JPCERT/CC. JPCERT/CC coordinated with the...