4 matches found
CVE-2014-7006
The HydFM aka com.apheliontechnologies.hydfm application 1.1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The HydFM aka com.apheliontechnologies.hydfm application 1.1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7006
CVE-2014-7006 affects the HydFM (com.apheliontechnologies.hydfm) Android app v1.1.9. The root cause is lack of X.509 certificate verification for SSL connections, enabling man-in-the-middle attackers to spoof servers and exfiltrate sensitive information; CVSSv2 base score 5.4 (Medium). Exploitati...
CVE-2014-7006
The HydFM aka com.apheliontechnologies.hydfm application 1.1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...