CVE-2014-5766
The CVE-2014-5766 entry concerns the Uber B2B Android application version 1.9, which does not verify X.509 certificates from SSL servers. This misconfiguration enables man-in-the-middle attackers to spoof legitimate servers and obtain sensitive information via a crafted certificate. The available...