Lucene search
K

6 matches found

hackapp
hackapp
added 2016/04/01 10:23 a.m.14 views

Math For Kids - External URLs, SD-card access, Unsafe deleting vulnerabilities

HackApp vulnerability scanner discovered that application Math For Kids published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
hackapp
hackapp
added 2016/04/01 10:23 a.m.13 views

Math for Kids - Dangerous filesystem permissions, Insecure KeyStore vulnerabilities

HackApp vulnerability scanner discovered that application Math for Kids published at the 'play' market has multiple vulnerabilities...

0.1AI score
Exploits0References1Affected Software1
NVD
NVD
added 2014/09/29 1:55 a.m.11 views

CVE-2014-6786

The Math for Kids - Subtraction aka it.tinytap.attsa.deepsub application 1.2.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
Prion
Prion
added 2014/09/29 1:55 a.m.17 views

Information disclosure

The Math for Kids - Subtraction aka it.tinytap.attsa.deepsub application 1.2.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2014/09/29 1:0 a.m.33 views

CVE-2014-6786

The CVE refers to The Math for Kids - Subtraction (aka it.tinytap.attsa.deepsub) Android app version 1.2.10, where the SSL/TLS trust check is not performed (does not verify X.509 certificates). This allows man-in-the-middle attackers to spoof servers and potentially obtain sensitive information v...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/09/29 1:0 a.m.23 views

CVE-2014-6786

The Math for Kids - Subtraction aka it.tinytap.attsa.deepsub application 1.2.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
Rows per page
Query Builder