CVE-2014-5650
The CVE-2014-5650 entry concerns the Android app Traffic Jam Free (aka com.jiuzhangtech.rushhour) 1.7.7, which does not verify X.509 certificates from SSL servers. This omission enables man-in-the-middle attackers to spoof servers and harvest sensitive data via a crafted certificate. The connecte...