2 matches found
CVE-2014-5689
The Runtastic Road Bike aka com.runtastic.android.roadbike.lite application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5689
The CVE-2014-5689 entry pertains to the Runtastic Road Bike Android app (com.runtastic.android.roadbike.lite) version 2.0.1, where the app does not verify X.509 certificates from SSL servers. This certificate validation bypass allows MITM attackers to spoof servers and potentially exfiltrate sens...