Total
2474 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-7402 | 1 Encardirect | 1 Sk Encar | 2025-04-12 | 5.4 MEDIUM | N/A |
| The SK encar (aka com.encardirect.app) application @7F050000 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6723 | 1 Comicsplusapp | 1 Comics Plus | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Comics Plus (aka com.iversecomics.comicsplus.android) application 1.06 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7481 | 1 Etghosting | 1 Etg Hosting | 2025-04-12 | 5.4 MEDIUM | N/A |
| The ETG Hosting (aka com.etg.web.hosting) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5540 | 1 Flickatrade | 1 Flick A Trade | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Flick a Trade (aka air.com.cygnecode.fat) application 3.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6982 | 1 Arabic Troll Football Project | 1 Arabic Troll Football | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Arabic Troll Football (aka com.hamoosh.ArabicTrollFootball) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5702 | 1 Skyboardapps | 1 Penguin Run | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Penguin Run (aka com.skyboard.google.penguinRun) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5656 | 1 Traauctions | 1 Tra Auctions For Buyers | 2025-04-12 | 5.4 MEDIUM | N/A |
| The TRA Auctions for Buyers (aka com.manheim.tra) application 2.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5895 | 1 Shopyourway | 1 Shopyourway | 2025-04-12 | 5.4 MEDIUM | N/A |
| The ShopYourWay (aka com.sears.shopyourway) application 1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7065 | 1 Ukbusinessaid | 1 Nigerias Business Directory | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Nigerias Business Directory (aka com.wNigeriasBusinessDirectory) application 0.70.13414.17619 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7041 | 1 Simbiotnetwork | 1 Simgene | 2025-04-12 | 5.4 MEDIUM | N/A |
| The SimGene (aka com.japanbioinformatics.simgene) application 1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-1348 | 1 Apple | 1 Iphone Os | 2025-04-12 | 2.1 LOW | N/A |
| Mail in Apple iOS before 7.1.2 advertises the availability of data protection for attachments but stores cleartext attachments under mobile/Library/Mail/, which makes it easier for physically proximate attackers to obtain sensitive information by mounting the data partition. | |||||
| CVE-2014-6923 | 1 Mobitrips | 1 Dubrovnik Guided Walking Tours | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Dubrovnik Guided Walking Tours (aka com.mytoursapp.android.app351) application 1.3.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5658 | 1 Mercadolibre | 1 Mercadolibre | 2025-04-12 | 5.4 MEDIUM | N/A |
| The MercadoLibre (aka com.mercadolibre) application 3.8.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7565 | 1 Gmt-editions | 1 Rando Noeux | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Rando Noeux (aka com.gmteditions.NoeuxLesMinesDistrib) application 1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6802 | 1 Subsplash | 1 First Assembly Nlr | 2025-04-12 | 5.4 MEDIUM | N/A |
| The First Assembly NLR (aka com.subsplash.thechurchapp.firstassemblynlr) application 2.8.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6774 | 1 Neorcha | 1 Usek | 2025-04-12 | 5.4 MEDIUM | N/A |
| The USEK (aka com.university.usek) application 1.0.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5952 | 1 Calarepasoftware | 1 E-dziennik | 2025-04-12 | 5.4 MEDIUM | N/A |
| The E-Dziennik (aka com.librus.dziennik) application 0.5.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7571 | 1 Grey\'s Anatomy Fan Project | 1 Grey\'s Anatomy Fan | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Grey's Anatomy Fan (aka nl.jborsje.android.tvfan.greysanatomy) application 3.7.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7113 | 1 Nasa Universe Wallpapers Xeus Project | 1 Nasa Universe Wallpapers Xeus | 2025-04-12 | 5.4 MEDIUM | N/A |
| The NASA Universe Wallpapers Xeus (aka com.xeusNASA) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5996 | 1 Gebrauchtwagenreport | 1 Dekra Used Car Report | 2025-04-12 | 5.4 MEDIUM | N/A |
| The DEKRA Used Car Report (aka com.dekra.maengelreport) application 3.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||