Vulnerabilities (CVE)

Filtered by vendor K-opticom Corporation Subscribe
Filtered by product Lala Call
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-2103 1 K-opticom Corporation 1 Lala Call 2024-11-21 4.3 MEDIUM 5.9 MEDIUM
The LaLa Call App for Android 2.4.7 and earlier does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.