CVE-2014-6910
The MemorizeIt! Android app (package com.kshinenterprises.kshinent.memorizeit) version 1.7.2 does not verify X.509 certificates from SSL servers, allowing man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Root cause: failure to verify TLS cer...