CVE-2014-6802
The First Assembly NLR Android app (package com.subsplash.thechurchapp.firstassemblynlr) version 2.8.0 does not verify X.509 certificates from SSL servers, enabling MITM attackers to spoof servers and obtain sensitive information via a crafted certificate. This is described consistently across th...