Insecure SSL Certificate Validation in Acer Portal App for Android

CVE-2016-5648 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

Acer Portal app before 3.9.4.2000 for Android does not properly validate SSL certificates, which allows remote attackers to perform a Man-in-the-middle attack via a crafted SSL certificate.

Learn more about our Cis Benchmark Audit For Google Android.