CVE-2014-6746
The CVE covers the Infiniti Roadside Assistance Android app (com.ccas.rsa.common.infiniti) version 1.1, which fails to verify SSL X.509 certificates. This certificate validation flaw enables man-in-the-middle attackers to spoof servers and obtain sensitive data via a crafted certificate. The prov...