CVE-2014-5761
The CVE-2014-5761 entry concerns the Zipcar Android app (package com.zc.android) version 3.4.2, where the app does not verify X.509 certificates when connecting to SSL servers. This behavior enables man-in-the-middle attackers to spoof legitimate servers and obtain sensitive information via a cra...