2 matches found
Design/Logic Flaw
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2014-6025. Reason: This candidate is a reservation duplicate of CVE-2014-6025. Notes: All CVE users should reference CVE-2014-6025 instead of this candidate. All references and descriptions in this candidate have been removed to...
CVE-2014-6025
The CVE-2014-6025 entry concerns the Chartboost library for Android prior to version 2.0.2, which does not verify X.509 certificates from SSL servers. This behavior enables man-in-the-middle attackers to spoof a server and access sensitive information via a crafted certificate. The vulnerability ...