CVE-2021-20732

Summary

The ATOM (ATOM - Smart life App for Android versions prior to 1.8.1 and ATOM - Smart life App for iOS versions prior to 1.8.2) does not verify server certificate properly, which allows man-in-the-middle attackers to eavesdrop on encrypted communication via a crafted certificate.

Affected Software

VendorProductVersion RangeStatus
ATOM tech Inc.ATOMATOM - Smart life App for Android versions prior to 1.8.1 and ATOM - Smart life App for iOS versions prior to 1.8.2affected

Weaknesses

  • Improper server certificate verification

ADP Enrichment

CVE Program Container

Additional References

References