CVE-2014-7327
CVE-2014-7327 affects the Macau Business Android app (3.0). The vulnerable component is the SSL certificate validation: it does not verify X.509 certificates from SSL servers, enabling MITM attackers to spoof servers and exfiltrate sensitive information via a crafted certificate. The NVD entry li...