CVE-2018-0650 (line_music)
-
The LINE MUSIC for Android version 3.1.0 to versions prior to 3.6.5 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-0650
© Lightnetics 2024