CVE-2014-6954
The Deer Hunting Calls + Guide app (Android, package com.anawaz.deerhuntingcalls.free) version 4.0.1 is affected by a certificate validation flaw: it does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and access sensitive information via a c...