2 matches found
CVE-2014-5984
The Little Dragons Android app (package com.playcomo.dragongame) version 1.0.256 does not verify X.509 certificates from SSL servers, enabling potential man‑in‑the‑middle attacks. This allows spoofing of servers and exposure of sensitive data via crafted certificates. Root cause: missing/weak cer...
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-5971, CVE-2014-5984. Reason: this ID was intended for one issue, but was assigned to two issues by a CNA. Notes: All CVE users should consult CVE-2014-5971 and CVE-2014-5984 to determine which ID is appropriate. All reference...