CVE-2014-5873
The CVE-2014-5873 entry relates to the Sears Android app (package com.sears.android) version 6.2.8 failing to verify X.509 certificates for SSL connections. This certificate validation bypass enables potential MITM attackers to spoof servers and exfiltrate sensitive information via a crafted cert...