TROYANOSYVIRUS
Retour aux CVEs

CVE-2016-4840

MEDIUM
5.9

Description

Coordinate Plus App for Android 1.0.2 and earlier and Coordinate Plus App for iOS 1.0.2 and earlier do not verify SSL certificates.

Details CVE

Score CVSS v3.15.9
SeveriteMEDIUM
Vecteur CVSSCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Vecteur d'attaqueNETWORK
ComplexiteHIGH
Privileges requisNONE
Interaction utilisateurNONE
Publie4/21/2017
Derniere modification4/20/2025
Sourcenvd
Observations honeypot0

Produits affectes

toshiba:coordinate_plus

Faiblesses (CWE)

CWE-295

References

http://jvn.jp/en/jp/JVN06920277/index.html(vultures@jpcert.or.jp)
http://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000133.html(vultures@jpcert.or.jp)
http://www.securityfocus.com/bid/92314(vultures@jpcert.or.jp)
http://jvn.jp/en/jp/JVN06920277/index.html(af854a3a-2127-422b-91ae-364da2661108)
http://jvndb.jvn.jp/en/contents/2016/JVNDB-2016-000133.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/92314(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.