CVE-2014-6736
The EPL Hat Trick (com.hat.trick.goal) Android app 1.0 does not verify X.509 certificates from SSL servers, allowing MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. No remediation details are provided in the given documents; CVSS/impact data from NVD in...