Skip to main content

Invex

1 CVEs product

Monthly

CVE-2014-6790 MEDIUM This Month

The INVEX (aka com.mobilatolye.keyinternet) application 1.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Invex
NVD
CVSS 2.0
5.4
EPSS
0.1%
EPSS 0% CVSS 5.4
MEDIUM This Month

The INVEX (aka com.mobilatolye.keyinternet) application 1.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Invex
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy