Rakuten card App for iOS 5.2.0 through 5.2.4 does not verify SSL certificates which might allow remote attackers to execute man-in-the-middle attacks.
CVSS 2.0
Severity: MEDIUM
Problem Type: CWE-295,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| rakutencard | rakuten_card | 5.2.3 |
| rakutencard | rakuten_card | 5.2.0 |
| rakutencard | rakuten_card | 5.2.1 |
| rakutencard | rakuten_card | 5.2.2 |
| rakutencard | rakuten_card | 5.2.4 |