2 matches found
CVE-2014-5982
The CVE-2014-5982 entry concerns the RunKeeper - GPS Track Run Walk Android app (com.fitnesskeeper.runkeeper.pro) version 4.7 that does not validate X.509 certificates when connecting to SSL servers. This omission enables man-in-the-middle attackers to spoof servers and obtain sensitive informati...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-5665, CVE-2014-5982. Reason: this ID was intended for one issue, but was assigned to two issues by a CNA. Notes: All CVE users should consult CVE-2014-5665 and CVE-2014-5982 to determine which ID is appropriate. All reference...