CVE-2014-6961
The CVE-2014-6961 entry concerns the Android app SudaniNet (2.0) which does not verify X.509 certificates from SSL servers. This causes potential man-in-the-middle scenarios where an attacker could spoof the SSL server and read sensitive data transmitted over TLS via a crafted certificate. The co...