CVE-2014-6905
The CVE-2014-6905 entry concerns the H2O Human Harmony Organization Android app (package com.netpia.ha.theh2o), version 1.6.5, which does not verify X.509 certificates from SSL servers. This root cause enables man-in-the-middle attackers to spoof servers and obtain sensitive information via a cra...