Vulnerabilities > T JOY

DATE CVE VULNERABILITY TITLE RISK
2018-05-14 CVE-2018-0591 Improper Certificate Validation vulnerability in T-Joy Kinepass
The KINEPASS App for Android Ver 3.1.1 and earlier, and for iOS Ver 3.1.2 and earlier do not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
network
high complexity
t-joy CWE-295
5.9