Computer Security
[EN] securityvulns.ru no-pyccku


PicsArt Photo Studio missed SSL certificate check
Published:01.12.2014
Source:
SecurityVulns ID:14128
Type:m-i-t-m
Threat Level:
5/10
Affected:PICSART : PicsArt Photo Studio 4.6
CVE:CVE-2014-5674 (The PicsArt - Photo Studio (aka com.picsart.studio) application 4.5.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.)
Original documentdocumentPrograma STIC, Insecure management of login credentials in PicsArt Photo Studio for Android [STIC-2014-0426] (01.12.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod