CVE-2014-6755

The CVE-2014-6755 entry concerns the SDN Forum (TapaTalk) Android app, version 3.6.5 (com.tapatalk.forumshiftdeletenet). The issue is failure to verify X.509 certificates from SSL servers, enabling man-in-the-middle attackers to spoof servers and expose sensitive information via a crafted certifi...