CVE-2014-7529
The CVE-2014-7529 entry covers the Android app “Bodyguard for Hire” (com.dreamstep.wBodyGuardforHire) version 0.18.13146.42280. The issue is that the app does not verify X.509 certificates from SSL servers, enabling a man-in-the-middle to spoof servers and extract sensitive data via a crafted cer...