Total
2452 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-6881 | 1 Pnc | 1 Virtual Wallet By Pnc | 2025-04-12 | 5.4 MEDIUM | N/A |
| The PNC Virtual Wallet (aka com.pnc.ecommerce.mobile.vw.android) application before 2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6637 | 1 Praninc | 1 Facebook Facts | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Facebook Facts (aka com.wFacebookFacts) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6010 | 1 Awesomewidgets | 1 Rasta Weed Widgets Hd | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Rasta Weed Widgets HD (aka aw.awesomewidgets.rastaweed) application 4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6000 | 1 Freshdirect | 1 Freshdirect | 2025-04-12 | 5.4 MEDIUM | N/A |
| The FreshDirect (aka com.freshdirect.android) application 2.7.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7968 | 1 Redhat | 1 Virtual Desktop Service Manager | 2025-04-12 | 5.0 MEDIUM | N/A |
| VDSM allows remote attackers to cause a denial of service (connection blocking) by keeping an SSL connection open. | |||||
| CVE-2014-7038 | 1 Al Jazeera Project | 1 Al Jazeera | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Al Jazeera (aka com.Al.Jazeera.net) application 6.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6700 | 1 Nba | 1 Nba Game Time 2013-2014 | 2025-04-12 | 5.4 MEDIUM | N/A |
| The NBA Game Time 2013-2014 (aka com.nbadigital.gametimelite) application 4.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6874 | 1 Concursive | 1 Modsim Connected | 2025-04-12 | 5.4 MEDIUM | N/A |
| The ModSim Connected (aka com.concursive.modsim) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6898 | 1 Boopsie | 1 Boopsie Mylibrary | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Boopsie MyLibrary (aka com.bredir.boopsie.mylibrary) application 4.5.110 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7804 | 1 Apptreestudios | 1 Gangsta Auto Thief Iii | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Gangsta Auto Thief III (aka com.apptreestudios.gdup3) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6808 | 1 Active 24 Project | 1 Active 24 | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Active 24 (aka com.zentity.app.active24) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5889 | 1 Androidforums | 1 Forum For Android | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Android Forums (aka com.tapatalk.androidforumscom) application 2.4.4.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5748 | 1 Wk12olslogin Project | 1 Wk12olslogin | 2025-04-12 | 5.4 MEDIUM | N/A |
| The wK12olslogin (aka com.wK12olslogin) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5678 | 1 Pop-hub | 1 Iq Test | 2025-04-12 | 5.4 MEDIUM | N/A |
| The IQ Test (aka com.pophub.androidiqtest.free) application 3.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7045 | 1 Onesolutionapps | 1 Bust Out Bail | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Bust Out Bail (aka com.onesolutionapps.bustoutbailandroid) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5660 | 1 Mymembersfirst | 1 Tn Members 1st Fcu-rdc | 2025-04-12 | 5.4 MEDIUM | N/A |
| The TN Members 1st FCU-RDC (aka com.metova.cuae.tmffcu) application 1.0.28 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7636 | 1 Unitedhawknation | 1 United Hawk Nation | 2025-04-12 | 5.4 MEDIUM | N/A |
| The United Hawk Nation (aka com.united12thman) application 2.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5745 | 1 Free Pageplus Activation Project | 1 Free Pageplus Activation | 2025-04-12 | 5.4 MEDIUM | N/A |
| The FREE Pageplus Activation (aka com.wFREEPageplusActivations) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7342 | 1 Echonewshk | 1 Echo News | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Echo News (aka com.solo.report) 1.10 application (beta) for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7080 | 1 Sigong Ebook Project | 1 Sigong Ebook | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Sigong ebook (aka com.sigongsa.sigonggenre) application 1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||