← back
CVE-2017-13105

Hi Security Virus Cleaner - Antivirus, Booster, 3.7.1.1329, 2017-09-13, Android application accepts all SSL certificates during SSL communication

EPSS 0.7%CWE-295
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.7%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
15 Aug 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Hi Security Virus Cleaner - Antivirus, Booster, 3.7.1.1329, 2017-09-13, Android application accepts all SSL certificates during SSL communication. This opens the application up to a man-in-the-middle attack having all of its encrypted traffic intercepted and read by an attacker.
Affected products
Hi Security Lab · Virus Cleaner - Antivirus, Booster

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.kb.cert.org/vuls/id/787952