CVE-2022-29482
Published Jun 14, 2022
·Updated
'Mobaoku-Auction&Flea Market' App for iOS versions prior to 5.5.16 improperly verifies server certificates, which may allow an attacker to eavesdrop on an encrypted communication via a man-in-the-middle attack.
Affected Software
1 affected component
Dena Mobaoku-auction \& Flea Market Iphone Os<5.5.16
Event History
Jun 14, 2022
CVE Published
via MITRE·07:05 AM
Data Sourced
via MITRE·07:05 AM
DescriptionWeakness
Frequently Asked Questions
1
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2022-29482.
2
What is the title of this vulnerability?
The title of this vulnerability is 'Mobaoku-Auction&Flea Market App for iOS versions prior to 5.5.16 improperly verifies server certificates'.
3
What is the severity of CVE-2022-29482?
The severity of CVE-2022-29482 is medium with a severity value of 3.7.
4
What is the affected software for CVE-2022-29482?
The affected software for CVE-2022-29482 is 'Mobaoku-Auction&Flea Market' App for iOS versions prior to 5.5.16.
5
How can an attacker exploit this vulnerability?
An attacker can exploit this vulnerability by performing a man-in-the-middle attack to eavesdrop on encrypted communication.