CVE-2014-7025
The CVE-2014-7025 entry concerns the Android app “Who-is-it? Lite” (de.profiler.android.whoisit, version 1.0). The vulnerability is a failure to verify X.509 certificates when establishing SSL/TLS connections, enabling man-in-the-middle attackers to spoof servers and access sensitive data via a c...