CVE-2014-6666
The CVE-2014-6666 entry concerns the Baglamukhi app (Android, version 0.1) that does not verify X.509 certificates from SSL servers. Root cause: missing certificate validation enables man‑in‑the‑middle attackers to spoof servers and potentially obtain sensitive information via crafted certificate...