CVE-2014-7422
The CVE records that the HEA Mobile Android app (com.homerelectric.smartapps) version 1.153.0034 does not verify X.509 certificates on SSL connections, causing potential MITM to spoof servers and steal sensitive data via crafted certificates. Root cause: missing server trust verification in the a...