CVE-2014-6668
CVE-2014-6668 affects the Android app African Radios Live (package com.nana.africanradioslive) version 1.0.6. The root cause is that the app does not verify X.509 certificates from SSL servers, allowing man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted ce...