CVE-2014-7405

The CVE-2014-7405 entry concerns the Belaire Family Orthodontics Android app (com.app_bf.layout) version 1.304, which fails to verify X.509 certificates for SSL servers. This definite lack of certificate validation enables man-in-the-middle attackers to spoof servers and access sensitive informat...