CVE-2014-6724
The affected software is the Android app Soap Making (package com.tapatalk.soapmakingforumcom), version 3.7.13. The root cause is lack of certificate validation for TLS/SSL connections, allowing MITM attackers to spoof servers and extract sensitive information via crafted certificates. Public ref...