CVE-2025-14022

LINE client for iOS prior to 15.4 allows man-in-the-middle attacks due to improper SSL/TLS certificate validation in an integrated financial SDK. The SDK interfered with the application's network processing, causing server certificate verification to be disabled for a significant portion of netwo...

CVE-2025-14022

LINE client for iOS prior to 15.4 allows man-in-the-middle attacks due to improper SSL/TLS certificate validation in an integrated financial SDK. The SDK interfered with the application's network processing, causing server certificate verification to be disabled for a significant portion of netwo...

CVE-2025-14022

Summary : CVE-2025-14022 affects the LINE client for iOS prior to 15.4. The root cause is improper SSL/TLS certificate validation in an integrated financial SDK, which interfered with network processing and disabled server certificate verification for a significant portion of traffic. This can al...

CVE-2025-14022

LINE client for iOS prior to 15.4 allows man-in-the-middle attacks due to improper SSL/TLS certificate validation in an integrated financial SDK. The SDK interfered with the application's network processing, causing server certificate verification to be disabled for a significant portion of netwo...

PT-2025-51206

LINE client for iOS prior to 15.4 allows man-in-the-middle attacks due to improper SSL/TLS certificate validation in an integrated financial SDK. The SDK interfered with the application's network processing, causing server certificate verification to be disabled for a significant portion of netwo...

EUVD-2012-0577

Malware in sbrugna...

EUVD-2012-0611

Malware in sbrugna...

EUVD-2016-4490

Malware in sbrugna...

MAL-2024-2370 Malicious code in financialtimes-classic (npm)

--- -= Per source details. Do not edit below this line.=-...

MATA Backdoor Targets Eastern European Industrial Companies

Threat Level Attack Report For a detailed threat advisory, download the pdf file here Summary MATA malware, a sophisticated backdoor framework, updated to target Eastern European industrial companies via spear-phishing, compromising financial software servers, and infiltrating networks, even...

Chinese APT group targets financial institutions in the campaign “Operation Cache Panda”

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here Chinese threat actor APT10 conducted a series of large-scale supply chain attacks that exclusively targeted the financial software systems of Taiwanese financial institutions from the end of November 2021 until the middle of...

Command Execution Vulnerability in the PC Client of HuaxiaYunCai.com

Huaxia Cloud Finance PC Client is a financial management software. A command execution vulnerability exists in Huaxia Yun Cai Network PC Client. An attacker can exploit the vulnerability to execute arbitrary code...

CVE-2020-6268

Statutory Reporting for Insurance Companies in SAP ERP EA-FINSERV versions - 600, 603, 604, 605, 606, 616, 617, 618, 800 and S4CORE versions 101, 102, 103, 104 does not execute the required authorization checks for an authenticated user, allowing an attacker to view and tamper with certain...

SQL Injection Vulnerability in Hongting Financial CRM Customer Management Software

Hongting Financial CRM Customer Management Software is a sales management platform that provides the most advanced and comprehensive sales management solution for business users. A SQL injection vulnerability exists in Hanting Financial CRM Customer Management Software, which can be exploited by...

Vendor BPC Silent on Patching SQL Injection in SmartVista Ecommerce Software

A popular ecommerce platform sold in 60 countries suffers from a SQL injection vulnerability privately disclosed in April that has yet to be patched by the vendor. BPC Banking Technologies of Switzerland has not acknowledged the vulnerability in its SmartVista suite of ecommerce and financial...

金蝶K3财务软件系统 kdfile文件 任意文件上传漏洞

No description provided by source...