CVE-2014-7742
The CVE-2014-7742 entry describes a vulnerability in the Noticias del Vaticano (com.wNoticiasdelVaticano) Android app version 0.1 where SSL certificate validation is not performed. This allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate....