QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2024-27440

Back to search

CVE-2024-27440

Published: Mar 13, 2024

Modified: Aug 5, 2024

PUBLISHED

Description

The Toyoko Inn official App for iOS versions prior to 1.13.0 and Toyoko Inn official App for Android versions prior 1.3.14 don't properly verify server certificates, which allows a man-in-the-middle attacker to spoof servers and obtain sensitive information via a crafted certificate.

VendorProductVersions

Toyoko Inn IT Solution Co., Ltd.

Toyoko Inn official App for iOS

affected
prior to 1.13.0

Toyoko Inn IT Solution Co., Ltd.

Toyoko Inn official App for Android

affected
prior 1.3.14

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now