CVE-2014-6777
The CVE-2014-6777 entry concerns the Android app blueeleph (aka eg.film.blueeleph) version 1.0, which does not verify X.509 certificates from SSL servers. This certificate validation flaw enables a man-in-the-middle to spoof servers and exfiltrate sensitive information via a crafted certificate. ...