CVE-2014-6719

2014-09-26T06:55:04
ID CVE-2014-6719
Type cve
Reporter NVD
Modified 2014-11-14T08:58:48

Description

The Kayak Angler Magazine (aka air.com.yudu.ReaderAIR1360155) application 3.12.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.