"Airbus NAVBLUE Flysmart+ Manager Hack"

A flaw was discovered in Flysmart+ Manager, one of several apps in the Flysmart+ suite used by Airbus pilots to synchronize data with other Flysmart+ apps that inform pilots about safe takeoffs and landings. Flysmart+ Manager, developed by Airbus-owned NAVBLUE, was found to have App Transport Security (ATS) disabled. ATS is an important security control that secures communications between the app and the its update server. An attacker could exploit this vulnerability to intercept and decrypt potentially sensitive information. This article continues to discuss the potential exploitation and impact of the security issue with NAVBLUE Flysmart+ Manager.

Security Affairs reports "Airbus NAVBLUE Flysmart+ Manager Hack"

Submitted by grigby1