HIGH 7.4
CVE-2015-5639
niconico App for iOS before 6.38 does not verify SSL certificates which could allow remote attackers to execute man-in-the-middle attacks.
CVSS v3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Vulnerable CPE configurations
| Vendor | Product | Platform | Versions | CPE 2.3 URI |
|---|---|---|---|---|
| dwango | niconico | iOS | ≤6.37 | cpe:2.3:a:dwango:niconico:*:*:*:*:*:iphone_os:*:* |