CVE-2017-5916
CVE-2017-5916 affects the America’s First Federal Credit Union Mobile Banking app for iOS (v3.1.0). The root cause is failure to verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Documented...