) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2014-6687 |
The wSaudichannelAlNasr (aka com.wSaudichannelAlNasr) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6686 |
The Zoho Books - Accounting App (aka com.zoho.books) application 3.1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6685 |
The Tsushima Travel Guide (aka com.netjapan.ntsushima) application 1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6684 |
The MOL bringaPONT (aka hu.mol.bringapont) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6683 |
The Open Electrical Webser (aka com.wOpenElectricalWeb) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6682 |
The w88235ff7bdc2fb574f1789750ea99ed6 (aka com.w88235ff7bdc2fb574f1789750ea99ed6) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6681 |
The Mahabharata Audiocast (aka com.wordbox.mahabharataAudiocast) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6680 |
The superheroquiz (aka com.davidhey.superheroquiz) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6679 |
The wEPISDParentPortal (aka com.dreamstep.wEPISDParentPortal) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6678 |
The Algeria Radio (aka com.wordbox.algeriaRadio) application 2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6677 |
The Ticket Round Up (aka com.xcr.android.ticketroundupapp) application 3.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6676 |
The Exercitii pentru abdomen (aka com.rareartifact.exercitiipentruabdomen41E29322) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6675 |
The Ruta Exacta (aka com.rutaexacta.m) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6674 |
The Amazighmusic (aka nl.appsandroo.Amazighmusic) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6673 |
The ChallengerTX (aka com.zhtiantian.ChallengerTX) application 3.9.12.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6672 |
The Friendcaster (aka uk.co.senab.blueNotifyFree) application 5.4.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6671 |
The World Cup 2014 Brazil - Xem TV (aka vn.letshare.football.worldcup) application 2.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:08 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6670 |
The SingaporeMotherhood Forum (aka com.tapatalk.singaporemotherhoodcomforum) application 3.6.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6669 |
The Inside Crochet (aka com.magazinecloner.insidecrochet) application @7F08017A for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2014-6668 |
The African Radios Live (aka com.nana.africanradioslive) application 1.0.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Published: September 23, 2014; 6:55:07 AM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |