Vulnerabilities > Everyday Health INC > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-05-05 CVE-2017-5906 Improper Certificate Validation vulnerability in Everyday Health INC Diabetes in Check: Blood Glucose & Carb Tracker 3.4.2
The Everyday Health Diabetes in Check: Blood Glucose & Carb Tracker app 3.4.2 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
everyday-health-inc CWE-295
5.9