4 matches found
CVE-2014-5656
The TRA Auctions for Buyers aka com.manheim.tra application 2.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
Design/Logic Flaw
The TRA Auctions for Buyers aka com.manheim.tra application 2.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...
CVE-2014-5656
The Android app TRA Auctions for Buyers (com.manheim.tra) version 2.6 does not verify X.509 SSL server certificates, enabling man-in-the-middle attacks to spoof servers and access sensitive information via crafted certificates. This affects confidentiality and integrity (partial) with a CVSS v2 b...
CVE-2014-5656
The TRA Auctions for Buyers aka com.manheim.tra application 2.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...