CVE-2014-5797
The CVE-2014-5797 entry concerns the Android app nh.smart (smart) version 3.0.5, which fails to verify X.509 certificates when connecting to SSL servers. This allows a man-in-the-middle attacker to spoof the server and obtain sensitive information via a crafted certificate. The available document...