15 Nov 2018
CVE-2018-0691 - CVE Vulnerability
Multiple +Message Apps (Softbank +Message App for Android prior to version 10.1.7, Softbank +Message App for iOS prior to version 1.1.23, NTT DOCOMO +Message App for Android prior to version 42.40.2800, NTT DOCOMO +Message App for iOS prior to version 1.1.23, KDDI +Message App for Android prior to version 1.0.6, and KDDI +Message App for iOS prior to version 1.1.23) do not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. (CVSS:0.0) (Last Update:2018-11-15)
Vulnerability Details : Multiple +Message Apps (Softbank +Message App for Android prior to version 10.1.7, Softbank +Message App for iOS prior to version 1.1.23, NTT DOCOMO +Message App for Android prior to version 42.40.2800, NTT DOCOMO +Message App for iOS prior to version 1.1.23, KDDI +Message App for Android prior to version 1.0.6, and KDDI +Message App for iOS prior to version 1.1.23) do not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Publish Date : 2018-11-15 Last Update Date : 2018-11-15 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2018-0691
- References For CVE-2018-0691 | |||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2018-0691There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |