CVE-2014-6878
The CVE-2014-6878 entry concerns the RBFCU Mobile app (Android, com.Vertifi.DeposZip.P314089681) version 3.1. It does not verify X.509 certificates when establishing SSL connections, which enables man-in-the-middle attackers to spoof servers and exfiltrate sensitive information via a crafted cert...