Lucene search
K

4 matches found

NVD
NVD
added 2014/09/22 10:55 a.m.16 views

CVE-2014-6010

The Rasta Weed Widgets HD aka aw.awesomewidgets.rastaweed application 4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00271EPSS
Exploits0References3
Prion
Prion
added 2014/09/22 10:55 a.m.14 views

Information disclosure

The Rasta Weed Widgets HD aka aw.awesomewidgets.rastaweed application 4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00271EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/09/22 10:0 a.m.18 views

CVE-2014-6010

The Rasta Weed Widgets HD aka aw.awesomewidgets.rastaweed application 4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00271EPSS
Exploits0References3
CVE
CVE
added 2014/09/22 10:0 a.m.37 views

CVE-2014-6010

CVE-2014-6010 concerns the Android app Rasta Weed Widgets HD (aw.awesomewidgets.rastaweed) version 4, where the component handling SSL/TLS does not verify X.509 certificates. The root cause is certificate validation bypass, enabling MITM attackers to spoof servers and disclose sensitive data via ...

5.4CVSS6AI score0.00271EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder