CVE-2014-6732
The CVE-2014-6732 entry concerns the Westpac Mobile Banking Android app (version 5.21) that does not verify X.509 certificates when establishing SSL connections. This weakens server authentication and allows a man-in-the-middle to spoof SSL servers and capture sensitive information via a crafted ...