CVE-2016-2402

Published: 2017-01-30T22:59Z

Last Modified: 2024-11-21T02:48Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

OkHttp before 2.7.4 and 3.x before 3.1.2 allows man-in-the-middle attackers to bypass certificate pinning by sending a certificate chain with a certificate from a non-pinned trusted CA and the pinned certificate. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt