Total
2447 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2014-5884 | 1 1und1 | 1 1\&1 Online Storage | 2024-11-21 | 5.4 MEDIUM | N/A |
The 1&1 Online Storage (aka de.einsundeins.smartdrive) application 5.0.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5883 | 1 7-eleven | 1 7-eleven | 2024-11-21 | 5.4 MEDIUM | N/A |
The 7-ELEVEN (aka ecowork.seven) application 2.08.000 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5882 | 1 Applica | 1 Homoo Ijiri | 2024-11-21 | 5.4 MEDIUM | N/A |
The Homoo Ijiri (aka jp.co.applica) application 3.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5881 | 1 Yahoo | 1 Yahoo Ybox | 2024-11-21 | 5.4 MEDIUM | N/A |
The Yahoo! Japan Box (aka jp.co.yahoo.android.ybox) application 1.5.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5879 | 1 Tvguide Project | 1 Tvguide | 2024-11-21 | 5.4 MEDIUM | N/A |
The tvguide (aka kenneth.tvguide) application 1.9.14 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5878 | 1 I-um | 1 Ium | 2024-11-21 | 5.4 MEDIUM | N/A |
The ium (aka net.ium.mobile.android) application 3.3.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5877 | 1 Mini Group | 1 Tv Guide | 2024-11-21 | 5.4 MEDIUM | N/A |
The TV Guide (aka net.micene.minigroup.palimpsests.lite) application 5.4.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5876 | 1 Westerndigital | 1 Wd My Cloud | 2024-11-21 | 5.4 MEDIUM | N/A |
The WD My Cloud (aka com.wdc.wd2go) application 4.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5875 | 1 Sylpheo | 1 Sylphone | 2024-11-21 | 5.4 MEDIUM | N/A |
The Sylphone (aka com.sylpheo.prospectosyl) application 5.3.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5874 | 1 Splashid | 1 Splashid | 2024-11-21 | 5.4 MEDIUM | N/A |
The SplashID (aka com.splashidandroid) application 7.2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5873 | 1 Sears | 1 Sears | 2024-11-21 | 5.4 MEDIUM | N/A |
The Sears (aka com.sears.android) application 6.2.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5872 | 1 Safenet-inc | 1 Safenetmobile Pass | 2024-11-21 | 5.4 MEDIUM | N/A |
The SafeNetMobile Pass (aka securecomputing.devices.android.controller) application 8.3.7.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5871 | 1 Piwik | 1 Piwik Mobile 2 | 2024-11-21 | 5.4 MEDIUM | N/A |
The Piwik Mobile 2 (aka org.piwik.mobile2) application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5870 | 1 Kmart | 1 Kmart | 2024-11-21 | 5.4 MEDIUM | N/A |
The Kmart (aka com.kmart.android) application 6.2.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5869 | 1 Cnn | 1 Cnnmoney Portfolio | 2024-11-21 | 5.4 MEDIUM | N/A |
The CNNMoney Portfolio (aka com.cnn.cnnmoney) application 1.03 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5868 | 1 Cisco | 1 Cisco Technical Support | 2024-11-21 | 5.4 MEDIUM | N/A |
The Cisco Technical Support (aka com.cisco.swtg_android) application 3.7.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5867 | 1 Sparkpay | 1 Capital One Spark | 2024-11-21 | 5.4 MEDIUM | N/A |
The Capital One Spark Pay (aka com.capitalone.sparkpay) application 0.9.81 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5866 | 1 Dmv.ca.gov | 1 Ca Dmv | 2024-11-21 | 5.4 MEDIUM | N/A |
The CA DMV (aka gov.ca.dmv) application 2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5865 | 1 Ask | 1 Ask.com | 2024-11-21 | 5.4 MEDIUM | N/A |
The Ask.com (aka com.ask.android) application 2.2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
CVE-2014-5864 | 1 Getswish | 1 Swish Payments | 2024-11-21 | 5.4 MEDIUM | N/A |
The Swish payments (aka se.bankgirot.swish) application 2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. |