4 matches found
CVE-2014-7598
The Poker Puzzle aka com.sharpiq.pokerpuzzle application 1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-7430
The Flood-It aka com.appspot.eoltek.flood application 4.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-6824
The kamkomesan aka com.anek.kamkomesan application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2001-1568
The CVE-2001-1568 issue affects the CMG WAP gateway, where the system fails to verify the fully qualified domain name in the URL against X.509 certificates issued by root CAs. This hostname verification gap enables remote attackers to perform a man-in-the-middle attack to spoof SSL certificates, ...