CVE-2014-6876
The CVE-2014-6876 entry concerns the American Express Serve Android app (com.serve.mobile). Affected component: SSL/TLS certificate validation in the app; root cause: the application does not verify X.509 certificates from SSL servers. Impact: enables man-in-the-middle attackers to spoof servers ...