CVE-2014-6996
The CVE-2014-6996 entry concerns the Android app “Martial Arts Battle Card” (com.tapenjoy.zjh.tw) version 1.0.9, where SSL/TLS connections do not verify X.509 certificates. The underlying issue allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted cert...