CVE-2014-7760
The CVE-2014-7760 entry concerns the Android Health assistance service (net.nttcloud.ft.karada) app version 2.4.1, which does not verify X.509 certificates when connecting to SSL servers. This allows man-in-the-middle attackers to spoof servers and obtain sensitive information via crafted certifi...