4 matches found
CVE-2014-7502
The Escucha elDiario.es aka es.lacabradev.escuchaeldiario application 1.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Escucha elDiario.es aka es.lacabradev.escuchaeldiario application 1.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7502
The Escucha elDiario.es aka es.lacabradev.escuchaeldiario application 1.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7502
The CVE-2014-7502 entry describes an Android app issue: Escucha elDiario.es (aka es.lacabradev.escuchaeldiario) 1.2.3 does not verify X.509 SSL certificates, enabling MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. Root cause is missing SSL certificate ...