Security News > 2015 > June > Researcher Says LG App Update Mechanism Doesn’t Verify SSL Cert (Threatpost)

Researcher Says LG App Update Mechanism Doesn’t Verify SSL Cert (Threatpost)
2015-06-29 19:01

Many smartphones manufactured by LG contain a vulnerability that can allow an attacker to replace an APK file with a malicious file of his choice. The problem is the result of several conditions on LG phones. Like other manufacturers, LG includes custom apps on its handsets, which are not available through the normal Google Play […]


News URL

http://threatpost.com/researcher-says-lg-app-update-mechanism-doesnt-verify-ssl-cert/113522

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
LG 36 0 6 13 8 27