CVE-2014-7387

The ACC Advocacy Action (com.acc.app.android.ui) 2.0 for Android is affected: it does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via crafted certificates. Root cause is missing/incorrect certificate valida...