CVE-2020-5523
The CVE-2020-5523 entry concerns the Android App “MyPallete” and several banking apps based on it, which fail to verify server X.509 certificates and to perform proper host-mismatch validation. This weakens TLS and enables a man-in-the-middle attacker to eavesdrop or obtain sensitive data via cra...