Lucene search
K

4 matches found

NVD
NVD
added 2014/10/03 1:55 a.m.9 views

CVE-2014-6899

The Jazeera Airways aka com.winit.jazeeraairways application 2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
Prion
Prion
added 2014/10/03 1:55 a.m.14 views

Design/Logic Flaw

The Jazeera Airways aka com.winit.jazeeraairways application 2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/10/03 1:0 a.m.17 views

CVE-2014-6899

The Jazeera Airways aka com.winit.jazeeraairways application 2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
CVE
CVE
added 2014/10/03 1:0 a.m.35 views

CVE-2014-6899

CVE-2014-6899 affects the Jazeera Airways Android app (package com.winit.jazeeraairways), version 2.7, where the app does not verify X.509 certificates from SSL servers. This enables man-in-the-middle attackers to spoof legitimate servers and obtain sensitive information via a crafted certificate...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder