Total
2465 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2015-4080 | 1 Kankun | 1 Smartsocket | 2025-04-12 | 6.8 MEDIUM | N/A |
| The Kankun Smart Socket device and mobile application uses a hardcoded AES 256 bit key, which makes it easier for remote attackers to (1) obtain sensitive information by sniffing the network and (2) obtain access to the device by encrypting messages. | |||||
| CVE-2014-7767 | 1 Yunlai | 1 A\+ | 2025-04-12 | 5.4 MEDIUM | N/A |
| The A+ (aka cn.xrzcm) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7036 | 1 Questfcu | 1 Quest Federal Cu Mobile | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Quest Federal CU Mobile (aka com.metova.cuae.questfcu) application 1.0.27 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6689 | 1 Jingwei | 1 Jw Cards | 2025-04-12 | 5.4 MEDIUM | N/A |
| The JW Cards (aka com.jingwei.card) application 3.8.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7466 | 1 Live Tv Browser Project | 1 Live Tv Browser | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Live TV Browser (aka com.wHDSmartBrowser) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6934 | 1 Physics Chemistry Biology Quiz Project | 1 Physics Chemistry Biology Quiz | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Physics Chemistry Biology Quiz (aka com.pdevsmcqs.pcbmcqseries) application 1.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5773 | 1 Registeredassistant Project | 1 Registeredassistant | 2025-04-12 | 5.4 MEDIUM | N/A |
| The RegisteredAssistant (aka Icr.RegisteredAssistant) application 0.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5973 | 1 Socialknowledge | 1 Aquarium Advice | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Aquarium Advice (aka com.socialknowledge.aquariumadvice) application 3.7.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5808 | 1 Whisper | 1 Whisper | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Whisper (aka sh.whisper) application 4.0.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6887 | 1 Express | 1 Express | 2025-04-12 | 5.4 MEDIUM | N/A |
| The EXPRESS (aka com.gpshopper.express.android) application 2.5.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6708 | 1 Sportinginnovations | 1 Utah Jazz | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Sporting Club Uphoria (aka com.sportinginnovations.skc) application 2.1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7539 | 1 Zhang Zhijun Taiwan Visit 2014-06-25 Project | 1 Zhang Zhijun Taiwan Visit 2014-06-25 | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Zhang Zhijun Taiwan Visit 2014-06-25 (aka com.zizizzi) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6673 | 1 Zhtiantian | 1 Challengertx | 2025-04-12 | 5.4 MEDIUM | N/A |
| The ChallengerTX (aka com.zhtiantian.ChallengerTX) application 3.9.12.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6986 | 1 Fotoschilenas | 1 Pregnancy Tips | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Pregnancy Tips (aka com.rareartifact.tipsforpregnant71C80129) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6973 | 1 Akronchildrens | 1 Care4kids | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Care4Kids (aka com.codetherapy.care4kids) application 1.03 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5837 | 1 Game-insight | 1 My Railway | 2025-04-12 | 5.4 MEDIUM | N/A |
| The My Railway (aka com.gameinsight.myrailway) application 1.1.33 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5926 | 1 Dcu | 1 Dcu Mobile Banking | 2025-04-12 | 5.4 MEDIUM | N/A |
| The DCU Mobile Banking (aka com.Vertifi.Mobile.P211391825) application 2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7001 | 1 Ijianren | 1 Jian Ren | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Jian Ren (aka cn.sh.scustom.janren) application 1.5.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7082 | 1 Imapp | 1 No Disturb | 2025-04-12 | 5.4 MEDIUM | N/A |
| The No Disturb (aka com.blogspot.imapp.imnodisturb) application 3.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7088 | 1 Jdm Lifestyle Project | 1 Jdm Lifestyle | 2025-04-12 | 5.4 MEDIUM | N/A |
| The JDM Lifestyle (aka com.hondatech) application 6.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||