6 matches found
EUVD-2023-33068
Malicious code in bioql PyPI...
CVE-2023-29501
Jiyu Kukan Toku-Toku coupon App for iOS versions 3.5.0 and earlier, and Jiyu Kukan Toku-Toku coupon App for Android versions 3.5.0 and earlier are vulnerable to improper server certificate verification. If this vulnerability is exploited, a man-in-the-middle attack may allow an attacker to...
Input validation
Jiyu Kukan Toku-Toku coupon App for iOS versions 3.5.0 and earlier, and Jiyu Kukan Toku-Toku coupon App for Android versions 3.5.0 and earlier are vulnerable to improper server certificate verification. If this vulnerability is exploited, a man-in-the-middle attack may allow an attacker to...
CVE-2023-29501
Jiyu Kukan Toku-Toku coupon App for iOS versions 3.5.0 and earlier, and Jiyu Kukan Toku-Toku coupon App for Android versions 3.5.0 and earlier are vulnerable to improper server certificate verification. If this vulnerability is exploited, a man-in-the-middle attack may allow an attacker to...
CVE-2023-29501
The CVE-2023-29501 entry concerns RUNSYSTEM’s Jiyu Kukan Toku-Toku coupon App for iOS and Android (versions 3.5.0 and earlier). Root cause: improper server certificate verification (CWE-295). Impact: enables a man-in-the-middle to eavesdrop on encrypted communications. Affected products: Jiyu Kuk...
JVN#33836375: "Jiyu Kukan Toku-Toku coupon" App vulnerable to improper server certificate verification
"Jiyu Kukan Toku-Toku coupon" App provided by RUNSYSTEM CO.,LTD. is vulnerable to improper server certificate verification CWE-295. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on an encrypted communication. Solution Update the application Update the application to the...