CVE-2014-6903
The CVE-2014-6903 entry corresponds to the Gulf Power Mobile Bill Pay Android app (com.tionetworks.gulf) failing to verify X.509 certificates from SSL servers. This disables proper TLS certificate validation, enabling man-in-the-middle attackers to spoof servers and capture sensitive data via a c...