CVE-2014-4899
The CVE-2014-4899 entry concerns the Android app Indian Cement Review (com.magzter.indiancementreview) version 3.01, which fails to verify X.509 certificates from SSL servers. This allows man-in-the-middle attackers to spoof servers and access sensitive information via a crafted certificate. The ...