CVE-2014-7077
CVE-2014-7077 affects the Gulf Coast Educators FCU Android app (package com.metova.cuae.gcefcu) version 1.0.27. The root cause is failure to verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and access sensitive information via a crafted certificate...