CVE-2014-7124
CVE-2014-7124 affects the Android app IP Alarm (com.cosesy.gadget.alarm) version 1.4. The vulnerability stems from the app not verifying X.509 certificates when connecting to SSL servers, enabling man-in-the-middle attackers to spoof the server and access sensitive information via a crafted certi...