Information disclosure

The Ink Cards aka com.sincerely.android.ink application 2.0.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

CVE-2014-7761

CVE-2014-7761 affects the Ink Cards Android app (com.sincerely.android.ink) 2.0.4, where the SSL/TLS client does not verify X.509 certificates. This allows man-in-the-middle attackers to spoof servers and access sensitive information via a crafted certificate. The NVD entry lists a medium base sc...

CVE-2014-7761

The Ink Cards aka com.sincerely.android.ink application 2.0.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...