Lucene search
+L

4 matches found

NVD
NVD
added 2014/09/09 1:55 a.m.13 views

CVE-2014-5610

The ce4arab market aka com.dreamstep.wce4arabmarket application 0.12.13093.40460 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00271EPSS
Exploits0References3
Prion
Prion
added 2014/09/09 1:55 a.m.14 views

Information disclosure

The ce4arab market aka com.dreamstep.wce4arabmarket application 0.12.13093.40460 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00271EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/09/09 1:0 a.m.21 views

CVE-2014-5610

The ce4arab market aka com.dreamstep.wce4arabmarket application 0.12.13093.40460 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00271EPSS
Exploits0References3
CVE
CVE
added 2014/09/09 1:0 a.m.38 views

CVE-2014-5610

The CVE-2014-5610 entry describes a vulnerability in the Android ce4arab market (com.dreamstep.wce4arabmarket) app version 0.12.13093.40460 where TLS/SSL X.509 certificate verification is not performed by the client, enabling a man-in-the-middle to spoof servers and obtain sensitive information v...

5.4CVSS6AI score0.00271EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder