logo
Vulnerability feed
CONTRIBUTE

Vulnerability

warn

CVE-2024-43201

Reference to the description:

https://nvd.nist.gov/vuln/detail/CVE-2024-43201

Description:
The Planet Fitness Workouts iOS and Android mobile apps fail to properly validate TLS certificates, allowing an attacker with appropriate network access to obtain session tokens and sensitive information. Planet Fitness first addressed this vulnerability in version 9.8.12 (released on 2024-07-25) and more recently in version 9.9.13 (released on 2025-02-11).
Last updated date:
02/28/2025
Type:
exploit
Confidence:
HIGH
Date of publishing:
09/30/2024
Reference url to background

https://dontvacuum.me/bugs/pf/

Vulnerability FeedContributorsAboutBlog

@inTheWild

©2025

Privacy Policy