MEDIUM 5.9
CVE-2016-4818
DMMFX Trade for Android 1.5.0 and earlier, DMMFX DEMO Trade for Android 1.5.0 and earlier, and GAITAMEJAPAN FX Trade for Android 1.4.0 and earlier do not verify SSL certificates.
CVSS v3 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerable CPE configurations
| Vendor | Product | Platform | Versions | CPE 2.3 URI |
|---|---|---|---|---|
| dmm | dmmfx_demo_trade | Android | ≤1.5.0 | cpe:2.3:a:dmm:dmmfx_demo_trade:*:*:*:*:*:android:*:* |
| dmm | dmmfx_trade | Android | ≤1.5.0 | cpe:2.3:a:dmm:dmmfx_trade:*:*:*:*:*:android:*:* |
| dmm | gaitamejapan_fx_trade | Android | ≤1.4.0 | cpe:2.3:a:dmm:gaitamejapan_fx_trade:*:*:*:*:*:android:*:* |