CVE-2014-7055
The CVE-2014-7055 entry describes the NCCI Annual Issues Symposium Android app (1.0) not verifying X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and access sensitive data via a crafted certificate. Root cause: missing SSL certificate verification in th...