Code injection

2017-10-1016:29:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

53.7%

niconico App for iOS before 6.38 does not verify SSL certificates which could allow remote attackers to execute man-in-the-middle attacks.

CPENameOperatorVersion
niconicole6.37

CPE	Name	Operator	Version
	niconico	le	6.37

References

blog.nicovideo.jp/niconews/ni055746.html

jvn.jp/en/jp/JVN20355129/index.html

jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000137.html

www.securityfocus.com/bid/76906