Search Results (Refine Search)
- CPE Product Version: cpe:/a:amazon:kindle:4.4.0::~~~android~~
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2014-3908 |
The Amazon.com Kindle application before 4.5.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: August 30, 2014; 5:55:05 AM -0400 |
V3.x:(not available) V2.0: 5.8 MEDIUM |