Vulnerabilities > Planetfitness

DATE CVE VULNERABILITY TITLE RISK
2024-09-23 CVE-2024-43201 Improper Certificate Validation vulnerability in Planetfitness Planet Fitness Workouts
The Planet Fitness Workouts iOS and Android mobile apps fail to properly validate TLS certificates, allowing an attacker with appropriate network access to obtain session tokens and sensitive information.
network
high complexity
planetfitness CWE-295
5.9