High severity7.5NVD Advisory· Published Dec 16, 2017· Updated Jun 17, 2026
CVE-2017-3190
CVE-2017-3190
Description
Flash Seats Mobile App for Android version 1.7.9 and earlier and for iOS version 1.9.51 and earlier fails to properly validate SSL certificates provided by HTTPS connections, which may enable an attacker to conduct man-in-the-middle (MITM) attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:axs:flash_seats:*:*:*:*:*:android:*:*+ 1 more
- cpe:2.3:a:axs:flash_seats:*:*:*:*:*:android:*:*range: <=1.7.9
- cpe:2.3:a:axs:flash_seats:*:*:*:*:*:iphone_os:*:*range: <=1.9.51
Android <=1.7.9 / iOS <=1.9.51+ 1 more
- (no CPE)range: Android <=1.7.9 / iOS <=1.9.51
- (no CPE)range: Android version 1.7.9 and earlier
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/96719nvdThird Party AdvisoryVDB Entry
- www.kb.cert.org/vuls/id/247016nvdThird Party AdvisoryUS Government Resource
- www.wilderssecurity.com/threads/flash-seats-mobile-app-for-ios-fails-to-validate-ssl-certificates.392553/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.