Lucene search

K
cvelistCertccCVELIST:CVE-2014-5939
HistorySep 18, 2014 - 10:00 a.m.

CVE-2014-5939

2014-09-1810:00:00
certcc
www.cve.org

5.9 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

18.8%

The travelzadcomvb (aka com.tapatalk.travelzadcomvb) application 3.3.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

5.9 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

18.8%

Related for CVELIST:CVE-2014-5939