Banco De Costa Rica : Security Vulnerabilities, CVEs,
The Banco de Costa Rica BCR Movil app 3.7 for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
Max CVSS
5.9
EPSS Score
0.08%
Published
2017-05-05
Updated
2017-05-17
1 vulnerabilities found