CVE-2019-5961
N/A
N/A
Summary
The Android App 'Tootdon for Mastodon' version 3.4.1 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Tsukurito, Inc. | Android App ‘Tootdon for Mastodon’ | version 3.4.1 and earlier | affected |
Weaknesses
- Fails to verify SSL certificates
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.