CVE-2014-4904
The CVE-2014-4904 entry concerns the Crossmo Calendar (com.crossmo.calendar) Android app, version 1.7.1, which fails to verify X.509 certificates from SSL servers. This vulnerability allows man‑in‑the‑middle attackers to spoof servers and access sensitive information via a crafted certificate. Th...