CVE-2017-14612
The CVE-2017-14612 entry concerns the iOS app “Shpock Boot Sale & Classifieds” (before version 3.17.0). The issue is that the app does not verify X.509 certificates from SSL servers, enabling potential MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. The...