CVE-2014-7049
The CVE-2014-7049 entry concerns the SomTodo (com.somcloud.somtodo) Android app version 2.0.3, which does not verify X.509 certificates from SSL servers. This trust weakness allows a man-in-the-middle to spoof servers and obtain sensitive information via a crafted certificate. The vulnerability a...