CVE-2014-6683
The CVE-2014-6683 entry concerns the Open Electrical Webser (com.wOpenElectricalWeb) Android app version 0.1, which fails to verify X.509 certificates from SSL servers. Root cause: missing certificate verification in the app’s TLS handling. Consequence: MITM attackers could spoof servers and capt...