4 matches found
CVE-2014-7457
The Electronics For You aka com.magzter.electronicsforyou application 3.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Design/Logic Flaw
The Electronics For You aka com.magzter.electronicsforyou application 3.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7457
The CVE-2014-7457 entry concerns the Electronics For You Android app (com.magzter.electronicsforyou) version 3.02, where SSL server certificate verification is not performed. This allows MITM attackers to spoof servers and exfiltrate sensitive data via a crafted certificate. The issue is describe...
CVE-2014-7457
The Electronics For You aka com.magzter.electronicsforyou application 3.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...