The IBM Notes Traveler application prior to 9.0.1.3 for Android lacks a warning message during selection of an HTTP session, which makes it easier for remote malicious users to obtain sensitive information by sniffing the network during a session in which the user had intended to use HTTPS.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm notes traveler |