Skip to main content

The U

1 CVEs product

Monthly

CVE-2016-6550 MEDIUM This Month

The U by BB&T app 1.5.4 and earlier for iOS does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information. Rated medium severity (CVSS 5.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure The U
NVD
CVSS 3.0
5.4
EPSS
0.0%
EPSS 0% CVSS 5.4
MEDIUM This Month

The U by BB&T app 1.5.4 and earlier for iOS does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information. Rated medium severity (CVSS 5.4), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Apple Information Disclosure The U
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy