) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2014-6638 |
The wTMDesktop (aka com.wTMDesktop) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6637 |
The Facebook Facts (aka com.wFacebookFacts) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6636 |
The LG Telepresence (aka com.rsupport.rtc.lge) application 2.0.12 Build 63 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6023 |
The s-peek credit rating report (aka com.rhomobile.speek) application 2.1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6022 |
The Versent Books (aka com.versentbooks) application 1.1.99 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6021 |
The Harley-Davidson Visa (aka com.usbank.icsmobile.harleydavidson) application 1.18 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6020 |
The Fuel Rewards Network (aka com.excentus.frn) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6019 |
The psychology (aka com.alek.psychology) application 1.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6018 |
The global beauty research (aka com.appems.topgirl) application 1.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6017 |
The Doodle Drop (aka net.lazyer.DoodleDrop) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6016 |
The Celluloid (aka com.eurisko.celluloid) application 1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6015 |
The TuCarro (aka com.tucarro) application 2.0.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6014 |
The Conquest Of Fantasia (aka air.com.ingen.studios.cof.sg) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6013 |
The nuSquare (aka tw.com.nuphoto.nusquare) application 1.0.78 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6012 |
The Gravity Bounce (aka net.toddm.gb) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6011 |
The cutprice (aka kr.co.wedoit.cutprice) application 1.0.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6010 |
The Rasta Weed Widgets HD (aka aw.awesomewidgets.rastaweed) application 4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6009 |
The Zombie Detector (aka com.jimmybolstad.zombiedetector) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6008 |
The Blitz Bingo (aka com.appMobi.sbbingo.app) application 2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6007 |
The LikeHero Get Instagram Likes (aka com.fraoula.likehero) application 1.0.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 22, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |