4 matches found
CVE-2014-6874
The ModSim Connected aka com.concursive.modsim application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Design/Logic Flaw
The ModSim Connected aka com.concursive.modsim application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6874
The ModSim Connected aka com.concursive.modsim application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6874
The CVE-2014-6874 issue affects the ModSim Connected (com.concursive.modsim) Android app version 2.0, where the client does not verify X.509 certificates from SSL servers. This weakens authentication and enables MITM attackers to spoof legitimate servers and extract sensitive information via a cr...