CVE-2021-43187

In JetBrains YouTrack Mobile before 2021.2, the client-side cache on iOS could contain sensitive information...

CVE-2021-43192

In JetBrains YouTrack Mobile before 2021.2, iOS URL scheme hijacking is possible...

Security Bulletin: IBM Cognos Analytics Mobile (iOS) is affected by multiple vulnerabilities

Summary There are vulnerabilities in Open Source Software OSS libraries consumed by IBM Cognos Analytics Mobile. These issues have been addressed by upgrading or removing the vulnerable libraries. Additionally, vulnerabilites related to CORS misconfiguration and Certificate Pinning have been...

CVE-2020-13891

An issue was discovered in Mattermost Mobile Apps before 1.31.2 on iOS. Unintended third-party servers could sometimes obtain authorization tokens, aka MMSA-2020-0022...

SMACom v1.2.0 - Insecure Session Validation Vulnerability

Document Title: =============== SMACom v1.2.0 - Insecure Session Validation Vulnerability References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2211 Release Date: ============= 2020-04-15 Vulnerability Laboratory ID VL-ID: ====================================...

CVE-2019-1948

A vulnerability in Cisco Webex Meetings Mobile iOS could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data by using an invalid Secure Sockets Layer SSL certificate. The vulnerability is due to insufficient SSL certificate validation by the affected...

CVE-2019-1948 Cisco Webex Meetings Mobile (iOS) SSL Certificate Validation Vulnerability

A vulnerability in Cisco Webex Meetings Mobile iOS could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data by using an invalid Secure Sockets Layer SSL certificate. The vulnerability is due to insufficient SSL certificate validation by the affected...

CVE-2017-9591

The "PCB Mobile" by Phelps County Bank app 3.0.2 -- aka pcb-mobile/id436891295 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2017-5905

The Dollar Bank Mobile app 2.6.3 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

Oracle Business Intelligence Mobile HD for iOS mimeAttachmentHeaderName Cross-Site Scripting Vulnerability

Oracle Business Intelligence Suite Enterprise Plus is a comprehensive suite of enterprise BI products that provide a full range of BI capabilities, including interactive dashboards, fully on-the-fly proactive intelligence and alerting solutions.Oracle Business Intelligence Mobile HD for iOS is...

Apple iTunes Mobile iOS Device Backup Enumeration (Windows)

The Apple iTunes installation on the remote Windows host is used by at least one user to backup data from a mobile iOS device, such as an iPhone, iPad, or iPod touch. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

iTunes Mobile iOS Device Backup Enumeration (Mac OS X)

The iTunes install on the remote Mac OS X host is used by at least one user to backup data from a mobile iOS device, such as an iPhone, iPad, or iPod touch. TRUSTED...