CVE-2014-6768
The CVE-2014-6768 entry concerns the Anywhere Anytime Yoga Workout (com.bayart.yoga) Android app, version 1.0. The root cause is that the app does not verify X.509 certificates when establishing SSL/TLS connections, which enables man-in-the-middle attackers to spoof servers and exfiltrate sensiti...