VYPR

Investigation Tool

by Broadcom Corporation

CVEs (1)

  • CVE-2014-6799Sep 29, 2014
    risk 0.00cvss epss 0.00

    The Investigation Tool (aka gov.ca.post.lp.itool) application 1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.