Medium severity5.9NVD Advisory· Published May 5, 2017· Updated Jun 17, 2026
CVE-2017-5915
CVE-2017-5915
Description
The Emirates NBD Bank P.J.S.C Emirates NBD KSA app 3.10.0 through 3.10.4 (UAE) and 2.0.1 through 2.1.0 (KSA) for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
Affected products
10cpe:2.3:a:emirates_nbd_bank_p.j.s.c:emirates_nbd:3.10.0:*:*:*:*:iphone_os:*:*+ 8 more
- cpe:2.3:a:emirates_nbd_bank_p.j.s.c:emirates_nbd:3.10.0:*:*:*:*:iphone_os:*:*
- cpe:2.3:a:emirates_nbd_bank_p.j.s.c:emirates_nbd:3.10.1:*:*:*:*:iphone_os:*:*
- cpe:2.3:a:emirates_nbd_bank_p.j.s.c:emirates_nbd:3.10.2:*:*:*:*:iphone_os:*:*
- cpe:2.3:a:emirates_nbd_bank_p.j.s.c:emirates_nbd:3.10.3:*:*:*:*:iphone_os:*:*
- cpe:2.3:a:emirates_nbd_bank_p.j.s.c:emirates_nbd:3.10.4:*:*:*:*:iphone_os:*:*
- cpe:2.3:a:emirates_nbd_bank_p.j.s.c:emirates_nbd_ksa:2.0.0:*:*:*:*:iphone_os:*:*
- cpe:2.3:a:emirates_nbd_bank_p.j.s.c:emirates_nbd_ksa:2.0.1:*:*:*:*:iphone_os:*:*
- cpe:2.3:a:emirates_nbd_bank_p.j.s.c:emirates_nbd_ksa:2.1.0:*:*:*:*:iphone_os:*:*
- (no CPE)range: 2.0.1 - 2.1.0
- Range: 3.10.0 - 3.10.4
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.