4 matches found
CVE-2014-7052
The sahab-alkher.com aka com.tapatalk.sahabalkhercomvb application 2.4.9.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Information disclosure
The sahab-alkher.com aka com.tapatalk.sahabalkhercomvb application 2.4.9.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7052
The sahab-alkher.com aka com.tapatalk.sahabalkhercomvb application 2.4.9.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7052
The CVE-2014-7052 entry concerns the Android application sahab-alkher.com (package com.tapatalk.sahabalkhercomvb) version 2.4.9.7, which does not verify X.509 certificates when communicating with SSL servers. This enables a man-in-the-middle attacker to spoof legitimate servers and exfiltrate sen...