2 matches found
CVE-2014-7727
The Dj Brad H aka com.dreamstep.wDjBradH application 0.90 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7727
The CVE-2014-7727 entry concerns the Android application Dj Brad H (com.dreamstep.wDjBradH) version 0.90, which fails to verify X.509 certificates when establishing SSL connections. This certificate validation bypass enables potential man-in-the-middle attackers to spoof servers and steal or eave...