Filtered by vendor Komoot Subscriptions
Filtered by product Komoot Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2021-21823 1 Komoot 1 Komoot 2022-07-21 7.5 High
An information disclosure vulnerability exists in the Friend finder functionality of GmbH Komoot version 10.26.9 up to 11.1.11. A specially crafted series of network requests can lead to the disclosure of sensitive information.
CVE-2017-14709 1 Komoot 1 Komoot 2018-09-11 N/A
The komoot GmbH "Komoot - Cycling & Hiking Maps" app before 9.3.2 -- aka komoot-cycling-hiking-maps/id447374873 -- for iOS does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.