CVE-2014-3908
CVE-2014-3908 affects the Kindle App for Android prior to version 4.5.0, which does not verify X.509 certificates from SSL servers. This insecure TLS validation can allow MITM attackers to spoof servers and obtain sensitive information via forged certificates. Public references from NVD/JVN confi...