CVE-2014-5977
The CVE-2014-5977 entry concerns the Mobile Face (com.wFacemobile) Android app (version 0.74.13432.91159). The issue is improper SSL handling: the app does not verify X.509 certificates from SSL servers, which enables man-in-the-middle attackers to spoof servers and obtain sensitive information v...