CVE-2014-7069
The CVE-2014-7069 entry concerns the Aventino Brand Android app (com.AventinoBrand), version 2.2. The vulnerability is due to failure to verify X.509 certificates when connecting to SSL servers, which enables man-in-the-middle attackers to spoof servers and access sensitive data via a crafted cer...