8 matches found
EUVD-2014-5841
Malware in sbrugna...
State Bank of India State Bank Anywhere app for iOS Man-in-the-Middle Attack Vulnerability
State Bank of India State Bank Anywhere app for iOS is a mobile app for iOS from State Bank of India with features like quick access to manage bank accounts, manage balances, pay bills and send money. A security vulnerability exists in version 5.1.0 of the State Bank of India State Bank Anywhere...
CVE-2017-5901
The CVE-2017-5901 entry concerns the State Bank of India State Bank Anywhere app for iOS (version 5.1.0). The connected documents confirm a root cause in which the app does not verify X.509 certificates from SSL servers, enabling a man-in-the-middle to spoof servers and potentially obtain sensiti...
State Bank Anywhere - Customized SSL, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application State Bank Anywhere published at the 'play' market has multiple vulnerabilities...
CVE-2014-5954
The State Bank Anywhere aka com.sbi.SBIFreedomPlus application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The State Bank Anywhere aka com.sbi.SBIFreedomPlus application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5954
The CVE-2014-5954 entry concerns the State Bank Anywhere (com.sbi.SBIFreedomPlus) Android app 2.0.1, which does not verify X.509 certificates from SSL servers. This certificate validation failure enables man-in-the-middle attackers to spoof SSL servers and obtain sensitive information via a craft...
CVE-2014-5954
The State Bank Anywhere aka com.sbi.SBIFreedomPlus application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...