CVE-2014-6941
CVE-2014-6941 concerns the NOS Alive Android app (version 5.1) failing to verify X.509 certificates from SSL servers. The root cause is insecure TLS certificate validation, which allows a man-in-the-middle to spoof servers and exfiltrate sensitive information via a crafted certificate. Documented...