CVE-2014-7080
The CVE-2014-7080 entry relates to the Sigong ebook Android app (package com.sigongsa.sigonggenre) version 1.0.0, which does not verify X.509 certificates when authenticating SSL servers. The lack of certificate validation enables a man-in-the-middle attacker to spoof the server and access sensit...