CVE-2014-6006
CVE-2014-6006 affects the Gratta & Vinci (com.dreamstep.wGrattaevinci) Android app version 0.21.13167.93474. The vulnerability is that the application does not verify X.509 certificates from SSL servers, allowing a man-in-the-middle to spoof servers and obtain sensitive information via a crafted ...