EUVD-2021-8690

Malicious code in bioql PyPI...

CVE-2021-21385

Mifos-Mobile Android Application for MifosX is an Android Application built on top of the MifosX Self-Service platform. Mifos-Mobile before commit e505f62 disables HTTPS hostname verification of its HTTP client. Additionally it accepted any self-signed certificate as valid. Hostname verification ...

CVE-2021-21385

Mifos-Mobile Android Application for MifosX is an Android Application built on top of the MifosX Self-Service platform. Mifos-Mobile before commit e505f62 disables HTTPS hostname verification of its HTTP client. Additionally it accepted any self-signed certificate as valid. Hostname verification ...

CVE-2021-21385 Disabled hostname verification and accepting self-signed certificates

Mifos-Mobile Android Application for MifosX is an Android Application built on top of the MifosX Self-Service platform. Mifos-Mobile before commit e505f62 disables HTTPS hostname verification of its HTTP client. Additionally it accepted any self-signed certificate as valid. Hostname verification ...

CVE-2021-21385

CVE-2021-21385 affects Mifos-Mobile Android Application for MifosX, where the HTTP client disables hostname verification and accepts any self-signed certificate. This undermines HTTPS integrity, enabling potential man-in-the-middle attacks. The issue is mitigated by the commit e505f62 in mifos-mo...

Garvit Agarwal mifos-mobile 安全漏洞

Garvit Agarwal mifos-mobile is an open source application by Garvit Agarwal. It is used by end-user customers to view/process their account holdings and loans. A security vulnerability exists in mifos-mobile that allows man-in-the-middle attacks...