CVE-2014-6797
The CVE-2014-6797 entry concerns the Android app Abu Ali Anasheeds (com.faapps.abuali_anasheeds) version 1.1, where the app does not verify X.509 certificates presented by SSL servers. This flaw allows man-in-the-middle attackers to spoof a server and access sensitive information via a crafted ce...