CVE-2014-6837
The CVE-2014-6837 entry concerns The Hillside (com.hillside.hermanus) Android app 1.1 that does not verify X.509 SSL certificates. The root cause is lack of server certificate verification, enabling man-in-the-middle attackers to spoof SSL servers and access sensitive information via crafted cert...