3 matches found
CVE-2014-5946
The forumhawaaworldcom aka com.tapatalk.forumhawaaworldcom application 3.4.12 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5946
The CVE-2014-5946 entry concerns the Android app forumhawaaworldcom (package com.tapatalk.forumhawaaworldcom) v3.4.12, which does not verify X.509 certificates from SSL servers. Root cause: TLS/SSL trust validation is bypassed, enabling man-in-the-middle attackers to spoof servers and access sens...
CVE-2014-5946
The forumhawaaworldcom aka com.tapatalk.forumhawaaworldcom application 3.4.12 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...