2 matches found
CVE-2014-5665
The CVE-2014-5665 entry concerns the Android app Mzone Login (com.mr384.MzoneLogin) version 1.2.0, which does not verify X.509 certificates from TLS servers. This allows a man-in-the-middle attacker to spoof servers and obtain sensitive information via a crafted certificate. Metrics indicate part...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-5665, CVE-2014-5982. Reason: this ID was intended for one issue, but was assigned to two issues by a CNA. Notes: All CVE users should consult CVE-2014-5665 and CVE-2014-5982 to determine which ID is appropriate. All reference...