CVE-2014-6991
CVE-2014-6991 affects LiveAuctions.tv (aka air.LiveAndroidMaxx) Android app version 2.005. The issue is that the app does not verify X.509 certificates from SSL servers, allowing man-in-the-middle attackers to spoof servers and read sensitive information via a crafted certificate. The linked NVD ...