CVE-2014-6828
The CVE-2014-6828 entry concerns the Gulf Credit Union Fi_Mobile.Gulf Android app (version 1.1) that does not verify X.509 certificates when establishing SSL connections. This root cause enables man-in-the-middle attackers to spoof TLS servers and obtain sensitive information via a crafted certif...