CVE-2014-7391
The CVE-2014-7391 entry concerns the Android version of the Synx addictive puzzle game (us.synx.mobile.play, version 1.0). The vulnerability stems from failing to verify X.509 certificates for TLS/SSL connections in the app, which can allow a man-in-the-middle to spoof servers and capture sensiti...