2 matches found
CVE-2014-7387
The ACC Advocacy Action aka com.acc.app.android.ui application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7387
The ACC Advocacy Action (com.acc.app.android.ui) 2.0 for Android is affected: it does not verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and obtain sensitive information via crafted certificates. Root cause is missing/incorrect certificate valida...