CVE-2014-6650
The CVE-2014-6650 entry relates to the NextGenUpdate Android app (package com.tapatalk.nextgenupdatecomforums, version 3.1.6). The vulnerability is an SSL/TLS certificate validation failure: the app does not verify X.509 server certificates, which can enable man-in-the-middle attackers to spoof s...