Vulnerabilities > Great Southern Bank > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-05-05 CVE-2017-5907 Improper Certificate Validation vulnerability in Great Southern Bank Great Southern Mobile Banking 3.0.1
The Great Southern Bank Great Southern Mobile Banking app before 4.0.4 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
great-southern-bank CWE-295
5.9