7 matches found
EUVD-2015-3071
Malware in sbrugna...
Design/Logic Flaw
Rakuten card App for iOS 5.2.0 through 5.2.4 does not verify SSL certificates which might allow remote attackers to execute man-in-the-middle attacks...
CVE-2015-2988
Rakuten card App for iOS 5.2.0 through 5.2.4 does not verify SSL certificates which might allow remote attackers to execute man-in-the-middle attacks...
CVE-2015-2988
Rakuten card App for iOS 5.2.0 through 5.2.4 does not verify SSL certificates which might allow remote attackers to execute man-in-the-middle attacks...
CVE-2015-2988
The CVE-2015-2988 entry concerns the Rakuten card App for iOS, affected in versions 5.2.0 through 5.2.4. The root cause is that the app fails to verify SSL server certificates, which can permit a remote attacker to perform a man-in-the-middle (MITM) attack and potentially eavesdrop on encrypted c...
Rakuten card for iOS Security Bypass Vulnerability
Rakuten card for iOS is a suite of iOS-based Rakuten card expense management applications from Rakuten Japan. A security bypass vulnerability exists in Rakuten card for iOS versions 5.2.0 through 5.2.4. An attacker could exploit the vulnerability to conduct a man-in-the-middle attack and spoof th...
JVN#81207766: Rakuten card App for iOS fails to verify SSL server certificates
Rakuten card App for iOS provided by Rakuten Card Co., Ltd. fails to verify SSL server certificates. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on an encrypted communication. Solution Update the Software Update to the latest version according to the information provided ...