Back to search
CVE-2016-7812
Published: Aug 2, 2017
Modified: Aug 6, 2024
PUBLISHED
Description
The Bank of Tokyo-Mitsubishi UFJ, Ltd. App for Android ver5.3.1, ver5.2.2 and earlier allow a man-in-the-middle attacker to downgrade the communication between the app and the server from TLS v1.2 to SSL v3.0, which may result in the attacker to eavesdrop on an encrypted communication.
| Vendor | Product | Versions |
|---|---|---|
The Bank of Tokyo-Mitsubishi UFJ, Ltd. | The Bank of Tokyo-Mitsubishi UFJ, Ltd. App for Android | affected ver5.3.1 |
The Bank of Tokyo-Mitsubishi UFJ, Ltd. | The Bank of Tokyo-Mitsubishi UFJ, Ltd. App for Android | affected ver5.2.2 and earlier |
References
https://jvn.jp/en/vu/JVNVU92900492/
x_refsource_MISC
94829
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now