CVE-2014-7423
The CVE-2014-7423 entry concerns the Android app Youth Incorporated (com.magzter.youthincorporated) on version 3.0, which does not validate X.509 certificates from SSL servers. The underlying flaw allows man-in-the-middle attackers to spoof legitimate servers and obtain sensitive information via ...