CVE-2014-7585
The CVE affects the Android app Biplane Forum (com.gcspublishing.biplaneforum) version 3.7.14, which does not verify X.509 certificates from SSL servers. This weakens TLS and enables man-in-the-middle attackers to spoof servers and exfiltrate sensitive information via a crafted certificate. The p...