2 matches found
CVE-2014-6828
The Gulf Credit Union aka FiMobile.Gulf application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6828
The CVE-2014-6828 entry concerns the Gulf Credit Union Fi_Mobile.Gulf Android app (version 1.1) that does not verify X.509 certificates when establishing SSL connections. This root cause enables man-in-the-middle attackers to spoof TLS servers and obtain sensitive information via a crafted certif...