CVE-2014-6877
The CVE-2014-6877 entry concerns the Santander Personal Banking Android app (version 2.1). The connected records confirm the root cause: the application does not verify X.509 certificates presented by SSL servers, which enables man-in-the-middle attackers to spoof servers and extract sensitive in...