CVE-2014-5832
The hananbank Android app (package com.hanabank.ebk.channel.android.hananbank), version 4.06, is affected by CVE-2014-5832 due to not validating X.509 certificates from SSL servers. This flaw enables MITM attackers to spoof servers and expose sensitive data via crafted certificates. The connected...