CVE-2014-5848
CVE-2014-5848 affects the Dubstep Hero Android app (com.electricpunch.dubstephero) version 1.9. The issue is failure to verify X.509 certificates when establishing SSL connections, which allows a man-in-the-middle to spoof servers and potentially exfiltrate sensitive data via a crafted certificat...