4 matches found
CVE-2014-6010
The Rasta Weed Widgets HD aka aw.awesomewidgets.rastaweed application 4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The Rasta Weed Widgets HD aka aw.awesomewidgets.rastaweed application 4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6010
The Rasta Weed Widgets HD aka aw.awesomewidgets.rastaweed application 4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6010
CVE-2014-6010 concerns the Android app Rasta Weed Widgets HD (aw.awesomewidgets.rastaweed) version 4, where the component handling SSL/TLS does not verify X.509 certificates. The root cause is certificate validation bypass, enabling MITM attackers to spoof servers and disclose sensitive data via ...