CVE-2014-5757
The CVE-2014-5757 entry affects the Android app Buy Tickets (com.xcr.android.buytickets) version 2.3. The vulnerability is that the app does not verify X.509 certificates from SSL servers, allowing man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certifi...