Vulnerabilities (CVE)

Filtered by vendor Core-apps Subscribe
Filtered by product Bowl Expo 2014
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-7518 1 Core-apps 1 Bowl Expo 2014 2024-11-21 5.4 MEDIUM N/A
The Bowl Expo 2014 (aka com.coreapps.android.followme.bowlexpo14) application 6.1.1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.