12 matches found
EUVD-2019-15600
Malware in sbrugna...
CVE-2019-6032
The NTV News24 prior to Ver.3.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
news24.co.id Cross Site Scripting vulnerability OBB-3695229
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
news24.co.id Cross Site Scripting vulnerability OBB-1463292
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
news24.co.id Cross Site Scripting vulnerability OBB-1450630
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
CVE-2019-6032
The NTV News24 prior to Ver.3.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The NTV News24 prior to Ver.3.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2019-6032
The NTV News24 prior to Ver.3.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2019-6032
The CVE-2019-6032 entry affects the Android App “NTV News24” prior to Ver.3.0.0, which fails to verify SSL server certificates (CWE-295). This enables a MITM attacker to spoof servers and eavesdrop or obtain sensitive data. Affected: NTV News24 Android app (prior to 3.0.0). Root cause: improper c...
Android App "NTV News24" fails to verify SSL server certificates
Overview Android App "NTV News24" provided by Nippon Television Network Corporation fails to verify SSL server certificates CWE-295. Shinnosuke Tokusho of Cryptography Laboratory,Department of Information and Communication Engineering,Tokyo Denki University reported this vulnerability to IPA...
JVN#01236065: Android App "NTV News24" fails to verify SSL server certificates
Android App "NTV News24" provided by Nippon Television Network Corporation fails to verify SSL server certificates CWE-295. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on an encrypted communication. Solution Update the Software Update to the latest version according to th...
Unspecified Vulnerability in Nippon Television Network NTV News24
Nippon Television Network NTV News24 is a mobile news application from Nippon Television Network Japan. A security vulnerability exists in Nippon Television Network NTV News24 versions prior to 3.0.0, which can be exploited by attackers to listen to encrypted communications via a man-in-the-middl...