CVE-2018-20200 (okhttp)
#1
CVE-2018-20200 (okhttp)

CertificatePinner.java in OkHttp 3.x through 3.12.0 allows man-in-the-middle attackers to bypass certificate pinning by changing SSLContext and the boolean values while hooking the application.


https://web.nvd.nist.gov/view/vuln/detai...2018-20200
Zitieren


Gehe zu: