CVE-2017-3194
The CVE concerns Pandora’s iOS app prior to version 8.3.2, where SSL certificate validation was not performed correctly, enabling potential MITM attacks on HTTPS connections. Affected component: Pandora iOS app; root cause: improper SSL certificate validation. Impact: attacker on the same network...