CVE-2020-14981
MEDIUMThreatTrack VIPRE Password Vault <1.100.1090 - Info Disclosure
Title source: llmDescription
The ThreatTrack VIPRE Password Vault app through 1.100.1090 for iOS has Missing SSL Certificate Validation.
References (2)
Core 2
Core References
Third Party Advisory x_refsource_misc
https://www.info-sec.ca/advisories/Vipre-Password-Vault.html
Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/158323/VIPRE-Password-Vault-1.100.1090-Man-In-The-Middle.html
Scores
CVSS v3
5.9
EPSS
0.0082
EPSS Percentile
52.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-295
Status
published
Products (1)
vipre/password_vault
< 1.100.1090
Published
Jun 22, 2020
Tracked Since
Feb 18, 2026