CVE-2015-2988

Rakuten card App for iOS 5.2.0 through 5.2.4 does not verify SSL certificates which might allow remote attackers to execute man-in-the-middle attacks.
References
Link Resource
http://www.securityfocus.com/bid/76531 Third Party Advisory VDB Entry
http://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000120.html Third Party Advisory VDB Entry
http://jvn.jp/en/jp/JVN81207766/index.html Third Party Advisory VDB Entry
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:rakutencard:rakuten_card:5.2.0:*:*:*:*:iphone_os:*:*
cpe:2.3:a:rakutencard:rakuten_card:5.2.2:*:*:*:*:iphone_os:*:*
cpe:2.3:a:rakutencard:rakuten_card:5.2.4:*:*:*:*:iphone_os:*:*
cpe:2.3:a:rakutencard:rakuten_card:5.2.1:*:*:*:*:iphone_os:*:*
cpe:2.3:a:rakutencard:rakuten_card:5.2.3:*:*:*:*:iphone_os:*:*

Information

Published : 2017-10-10 09:29

Updated : 2017-11-03 10:17


NVD link : CVE-2015-2988

Mitre link : CVE-2015-2988


JSON object : View

CWE
CWE-295

Improper Certificate Validation

Advertisement

dedicated server usa

Products Affected

rakutencard

  • rakuten_card