Lucene search
K

5 matches found

NVD
NVD
added 2014/10/16 7:55 p.m.18 views

CVE-2014-7042

The My nTelos aka com.telespree.ntelospostpay application 1.1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. NOTE: nTelos Wireless has indicated that this...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
Prion
Prion
added 2014/10/16 7:55 p.m.13 views

Design/Logic Flaw

The My nTelos aka com.telespree.ntelospostpay application 1.1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. NOTE: nTelos Wireless has indicated that this...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/10/16 7:0 p.m.21 views

CVE-2014-7042

The My nTelos aka com.telespree.ntelospostpay application 1.1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. NOTE: nTelos Wireless has indicated that this...

5.9AI score0.00266EPSS
Exploits0References3
CVE
CVE
added 2014/10/16 7:0 p.m.36 views

CVE-2014-7042

The CVE refers to the My nTelos (com.telespree.ntelospostpay) Android app, version 1.1.2, which does not verify X.509 certificates from SSL servers, enabling MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. This is the concrete vulnerability described ac...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2014/10/16 12:0 a.m.3 views

PT-2014-7717 · Ntelos · Ntelos

Name of the Vulnerable Software and Affected Versions: My nTelos application version 1.1.2 Description: The application does not verify X.509 certificates from SSL servers, allowing man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.5AI score0.00266EPSS
Exploits0References5
Rows per page
Query Builder