3 matches found
CVE-2017-5918
The Banco de Costa Rica BCR Movil app 3.7 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Banco de Costa Rica BCR Movil app 3.7 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2017-5918
CVE-2017-5918 affects the Banco de Costa Rica BCR Movil app for iOS (version 3.7). The vulnerability arises because the app does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to impersonate trusted servers and obtain sensitive information via a crafted certi...