Information from KDDI CORPORATION
Vulnerability ID:JVN#54005037
Title:"デジラアプリ" App for iOS vulnerable to improper server certificate verification
Status:Vulnerable
This is a statement from the vendor itself with no modification by JPCERT/CC.
A vulnerability has been identified in the iOS application "デジラアプリ" due to insufficient server certificate validation.
This vulnerability could allow an attacker to eavesdrop on or tamper with encrypted communications through a man-in-the-middle attack.
The issue has been fixed in versions released the following version or later.
Updating the app to the latest version will resolve the problem immediately.
ver.80.10.00 (released on November 4, 2025)
As of November 17, 2025, there have been no reports of damage or incidents resulting from this vulnerability.
Note: This app is for use in Japan only. It is not bilingual.
