Vulnerabilities > Gurunavi

DATE CVE VULNERABILITY TITLE RISK
2021-04-26 CVE-2021-20693 Missing Authorization vulnerability in Gurunavi 10.0.10/11.1.2
Improper access control vulnerability in Gurunavi App for Android ver.10.0.10 and earlier and for iOS ver.11.1.2 and earlier allows a remote attacker to lead a user to access an arbitrary website via the vulnerable App.
network
low complexity
gurunavi CWE-862
7.5
2017-10-10 CVE-2015-7778 Improper Certificate Validation vulnerability in Gurunavi Gournavi 5.4.4
Gurunavi App for iOS before 6.0.0 does not verify SSL certificates which could allow remote attackers to perform man-in-the-middle attacks.
network
high complexity
gurunavi CWE-295
5.9