CVE-2014-7035
The CVE-2014-7035 entry concerns The Harmonizers Planet Android app (2.3.4, package uk.co.pixelkicks.fifthharmony). The root cause is that the application does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information vi...