CVE-2016-7812
N/A
N/A
Summary
The Bank of Tokyo-Mitsubishi UFJ, Ltd. App for Android ver5.3.1, ver5.2.2 and earlier allow a man-in-the-middle attacker to downgrade the communication between the app and the server from TLS v1.2 to SSL v3.0, which may result in the attacker to eavesdrop on an encrypted communication.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| The Bank of Tokyo-Mitsubishi UFJ, Ltd. | The Bank of Tokyo-Mitsubishi UFJ, Ltd. App for Android | ver5.3.1 | affected |
| The Bank of Tokyo-Mitsubishi UFJ, Ltd. | The Bank of Tokyo-Mitsubishi UFJ, Ltd. App for Android | ver5.2.2 and earlier | affected |
Weaknesses
- Untrusted search path vulnerability
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.