CVE-2014-6860
The CVE-2014-6860 entry concerns the Android app “Trial Tracker” (com.etcweb.android.trial_tracker), version 1.1.9, where SSL/TLS connections do not verify X.509 certificates. This creates a classic man-in-the-middle risk: an attacker could spoof the server and capture or modify sensitive informa...