13 matches found
EUVD-2017-11286
Malware in sbrugna...
CVE-2018-21075
An issue was discovered on Samsung mobile devices with N7.x and O8.x software. The Call+ application can load classes from an unintended path, leading to Code Execution. The Samsung ID is SVE-2017-10886 April 2018...
Information disclosure
The LaLa Call App for Android 2.4.7 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2017-2103
The LaLa Call App for Android 2.4.7 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2017-2103
CVE-2017-2103 concerns the LaLa Call App for Android, where versions 2.4.7 and earlier do not verify X.509 certificates from SSL servers. This flaw enables Man-in-the-Middle attacks to potentially eavesdrop on encrypted communications by spoofing servers with crafted certificates. Affected softwa...
CVE-2017-2103
The LaLa Call App for Android 2.4.7 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2017-2104
The CVE-2017-2104 entry applies to the Android app Business LaLa Call App for Android, version 1.4.7 and earlier. The root cause is that the app does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafte...
CVE-2017-2104
The Business LaLa Call App for Android 1.4.7 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
JVN#01014759: LaLa Call App for Android fails to verify SSL server certificates
LaLa Call App for Android provided by K-Opticom Corporation fails to verify SSL server certificates. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on an encrypted communication. Solution Update the Application Update to the latest version according to the information provid...
Thermo Call - Base64 encoded String, Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Thermo Call published at the 'play' market has multiple vulnerabilities...
Fake Call Boyfriend Boys India - Customized SSL, Dynamic Code Loading, External URLs vulnerabilities
HackApp vulnerability scanner discovered that application Fake Call Boyfriend Boys India published at the 'play' market has multiple vulnerabilities...
Kidding Mo! #1 Prank Call App - Dynamic Code Loading, External URLs, Native code usage vulnerabilities
HackApp vulnerability scanner discovered that application Kidding Mo! 1 Prank Call App published at the 'play' market has multiple vulnerabilities...
Vodafone Germany rolls out SIM Card-based end-to-end Encryption
Since mobile has become a basic need for every common as well as important figure now a days. So, every company is highly working to find more effective ways to protect sensitive data of their users and in the race, Vodafone lead the game. In collaboration with its security partner Giesecke &...