CVE-2014-5772
The CVE-2014-5772 entry concerns the Government Bookstore Android app (version 1.01). The vulnerability is that it does not verify X.509 certificates from SSL servers, which can allow man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Exploita...