4 matches found
CVE-2014-7116
The NRA Journal aka com.magazinecloner.nationalrifleassociationjournal application @7F080181 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Xxe
The NRA Journal aka com.magazinecloner.nationalrifleassociationjournal application @7F080181 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7116
CVE-2014-7116 affects the Android app for the NRA Journal (package com.magazinecloner.nationalrifleassociationjournal). Affected component: SSL certificate validation logic does not verify X.509 certificates from servers, per the provided description. Root cause: missing certificate validation en...
CVE-2014-7116
The NRA Journal aka com.magazinecloner.nationalrifleassociationjournal application @7F080181 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...