Total
2484 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-6932 | 1 All Navalny Project | 1 All Navalny | 2025-04-12 | 5.4 MEDIUM | N/A |
| The All Navalny (aka com.all.navalny) application 1.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5936 | 1 Incognito Private Browser Project | 1 Incognito Private Browser | 2025-04-12 | 5.4 MEDIUM | N/A |
| The INCOgnito Private Browser (aka com.SL.InCoBrowser) application 1.4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7010 | 1 Utsa | 1 Utsa Mobile | 2025-04-12 | 5.4 MEDIUM | N/A |
| The UTSA Mobile (aka com.dub.app.utsa) application 1.4.21 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7712 | 1 Tiket | 1 Tiket.com Hotel \& Flight | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Tiket.com Hotel & Flight (aka com.tiket.gits) application 1.1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-0936 | 1 Ibm | 1 Security Appscan Source | 2025-04-12 | 4.3 MEDIUM | N/A |
| IBM Security AppScan Source 8.0 through 9.0, when the publish-assessment permission is not properly restricted for the configured database server, transmits cleartext assessment data, which allows remote attackers to obtain sensitive information by sniffing the network. | |||||
| CVE-2013-4488 | 1 Libgadu | 1 Libgadu | 2025-04-12 | 4.3 MEDIUM | N/A |
| libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. | |||||
| CVE-2014-7723 | 1 Cmu | 1 Carnegie Mellon Silicon Valley | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Carnegie Mellon Silicon Valley (aka edu.cmu.sv.mobile) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6637 | 1 Praninc | 1 Facebook Facts | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Facebook Facts (aka com.wFacebookFacts) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5849 | 1 Disney | 1 Maleficent Free Fall | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Maleficent Free Fall (aka com.disney.maleficent_goo) application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5900 | 1 Myhomeworkapp | 1 Myhomework Student Planner | 2025-04-12 | 5.4 MEDIUM | N/A |
| The myHomework Student Planner (aka com.myhomeowork) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5965 | 1 Groovemusic Project | 1 Groovemusic | 2025-04-12 | 5.4 MEDIUM | N/A |
| The GrooveMusic (aka com.mobincube.android.sc_2HKFF) application 2.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7122 | 1 Gannett | 1 Lansing State Journal Print | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Lansing State Journal Print (aka com.lansingjournal.android.prod) application 6.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6876 | 1 Serve | 1 American Express Serve | 2025-04-12 | 5.4 MEDIUM | N/A |
| The American Express Serve (aka com.serve.mobile) application @7F0901E4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6755 | 1 Shiftdelete | 1 Sdn Forum | 2025-04-12 | 5.4 MEDIUM | N/A |
| The SDN Forum (TapaTalk) (aka com.tapatalk.forumshiftdeletenet) application 3.6.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7562 | 1 Healthadvocate | 1 Health Advocate Smarthelp | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Health Advocate SmartHelp (aka com.healthadvocate.ui) application 3.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5682 | 1 Retale | 1 Retale - Weekly Ads \& Deals | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Retale - Weekly Ads & Deals (aka com.retale.android) application 2.1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7079 | 1 Cybird | 1 Romeo And Juliet | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Romeo and Juliet (aka jp.co.cybird.appli.android.rjs) application 1.0.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7518 | 1 Core-apps | 1 Bowl Expo 2014 | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Bowl Expo 2014 (aka com.coreapps.android.followme.bowlexpo14) application 6.1.1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5564 | 1 Aceviral | 1 Angry Gran Toss | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Angry Gran Toss (aka com.aceviral.angrygrantoss) application 1.1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5858 | 1 Candy Blast Project | 1 Candy Blast | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Candy Blast (aka com.appgame7.candyblast) application 1.1.001 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||