3 matches found
CVE-2014-6637
The Facebook Facts aka com.wFacebookFacts application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6637
The Facebook Facts aka com.wFacebookFacts application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6637
The CVE-2014-6637 entry concerns the Facebook Facts (com.wFacebookFacts) Android app 0.1, which does not verify X.509 certificates when establishing TLS connections. This improper certificate validation enables man-in-the-middle attackers to spoof SSL servers and exfiltrate sensitive information ...