VYPR
High severity7.5NVD Advisory· Published Dec 16, 2017· Updated Jun 17, 2026

CVE-2017-3190

CVE-2017-3190

Description

Flash Seats Mobile App for Android version 1.7.9 and earlier and for iOS version 1.9.51 and earlier fails to properly validate SSL certificates provided by HTTPS connections, which may enable an attacker to conduct man-in-the-middle (MITM) attacks.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Axs/Flash Seats2 versions
    cpe:2.3:a:axs:flash_seats:*:*:*:*:*:android:*:*+ 1 more
    • cpe:2.3:a:axs:flash_seats:*:*:*:*:*:android:*:*range: <=1.7.9
    • cpe:2.3:a:axs:flash_seats:*:*:*:*:*:iphone_os:*:*range: <=1.9.51
  • Android <=1.7.9 / iOS <=1.9.51+ 1 more
    • (no CPE)range: Android <=1.7.9 / iOS <=1.9.51
    • (no CPE)range: Android version 1.7.9 and earlier

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.

CVE-2017-3190 · High · VYPR