Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The KINEPASS App for Android Ver 3.1.1 and earlier, and for iOS Ver 3.1.2 and earlier do not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
T.JOY KINEPASS App for Android和iOS 安全漏洞
Vulnerability Description
T.JOY KINEPASS App for Android是日本T.JOY公司的一款基于Android平台用于在线预订、购买电影票的应用程序。KINEPASS App for iOS是它的基于iOS平台的版本。 基于Android平台的T.JOY KINEPASS App 3.1.1及之前版本和基于iOS平台的KINEPASS App 3.1.2及之前版本中存在安全漏洞,该漏洞源于程序没有校验SSL服务器的X.509证书。攻击者可借助特制的证书利用该漏洞实施中间人攻击,欺骗服务器,获取敏感信息。
CVSS Information
N/A
Vulnerability Type
N/A