2 matches found
CVE-2017-5914
The DOT IT Banque Zitouna app 2.1 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2017-5914
The DOT IT Banque Zitouna iOS app, version 2.1, fails to validate X.509 certificates from SSL servers, enabling man-in-the-middle attackers to impersonate trusted servers and obtain sensitive data via crafted certificates. Affected component: iOS client-side SSL certificate validation. Root cause...