Vulnerabilities > Improper Certificate Validation

DATE CVE VULNERABILITY TITLE RISK
2017-06-16 CVE-2017-9572 Improper Certificate Validation vulnerability in Athensstatebank Athens State Bank Mobile 3.0.0
The athens-state-bank-mobile-banking/id719748589 app 3.0.0 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
athensstatebank CWE-295
5.9
5.9
2017-06-16 CVE-2017-9571 Improper Certificate Validation vulnerability in Ccbank CCB Mobile Banking 3.0.1
The Citizens Community Bank (TN) ccb-mobile-banking/id610030469 app 3.0.1 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
ccbank CWE-295
5.9
5.9
2017-06-16 CVE-2017-9570 Improper Certificate Validation vulnerability in Meafinancial Mount Vernon Bank & Trust Mobile Banking 3.0.0
The mount-vernon-bank-trust-mobile-banking/id542706679 app 3.0.0 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
meafinancial CWE-295
5.9
5.9
2017-06-16 CVE-2017-9569 Improper Certificate Validation vulnerability in Citizensbanktx Cbtx on the GO 3.0.0
The Citizens Bank (TX) cbtx-on-the-go/id892396102 app 3.0.0 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
citizensbanktx CWE-295
5.9
5.9
2017-06-16 CVE-2017-9568 Improper Certificate Validation vulnerability in Myfpcu Financial Plus Mobile Banking 3.0.3
The financial-plus-mobile-banking/id731070564 app 3.0.3 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
myfpcu CWE-295
5.9
5.9
2017-06-16 CVE-2017-9567 Improper Certificate Validation vulnerability in Meafinancial AVB Bank Mobile Banking 3.0.0
The avb-bank-mobile-banking/id592565443 app 3.0.0 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
meafinancial CWE-295
5.9
5.9
2017-06-16 CVE-2017-9566 Improper Certificate Validation vulnerability in Meafinancial FSB Dequeen Mobile Banking 3.0.1
The fsb-dequeen-mobile-banking/id1091025340 app 3.0.1 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
meafinancial CWE-295
5.9
5.9
2017-06-16 CVE-2017-9565 Improper Certificate Validation vulnerability in Meafinancial First Security Bank Sleepy EYE Mobile 3.0.0
The first-security-bank-sleepy-eye-mobile/id870531890 app 3.0.0 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
meafinancial CWE-295
5.9
5.9
2017-06-16 CVE-2017-9564 Improper Certificate Validation vulnerability in Meafinancial Community Banks Cb2Go 3.1.3
The community-banks-cb2go/id445828071 app 3.1.3 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
meafinancial CWE-295
5.9
5.9
2017-06-16 CVE-2017-9563 Improper Certificate Validation vulnerability in Meafinancial Fccb 3.0.1
The First Citizens Community Bank fccb/id809930960 app 3.0.1 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
meafinancial CWE-295
5.9
5.9