3 matches found
CVE-2014-5829
The Hobby Lobby Stores aka com.hobbylobbystores.android application 2.1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5829
The Hobby Lobby Stores aka com.hobbylobbystores.android application 2.1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5829
CVE-2014-5829 affects the Hobby Lobby Stores Android app (package com.hobbylobbystores.android) version 2.1.9, where SSL/TLS server certificates are not verified. This weakness allows MITM attackers to spoof servers and obtain sensitive information via a crafted certificate, compromising confiden...