Total
2464 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-7325 | 1 Magzter | 1 Business Intelligence | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Business Intelligence (aka com.magzter.businessintelligence) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5612 | 1 Gmarket | 1 Gmarket | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Gmarket (aka com.ebay.kr.gmarket) application 5.1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7797 | 1 Gotobestofprice | 1 Thai Food | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Thai food (aka com.foods.thaifood) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6904 | 1 Cloudacl | 1 Safe Browser - The Web Filter | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Safe Browser - The Web Filter (aka com.cloudacl) application 1.2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-3274 | 1 Cisco | 1 Telepresence System Software | 2025-04-12 | 4.3 MEDIUM | N/A |
| Cisco TelePresence System (CTS) 6.0(.5)(5) and earlier falls back to HTTP when certain HTTPS sessions cannot be established, which allows man-in-the-middle attackers to obtain sensitive directory information by leveraging a network position between CTS and Cisco Unified Communications Manager (UCM) to block HTTPS traffic, aka Bug ID CSCuj26326. | |||||
| CVE-2014-4896 | 1 Mobileappspartner | 1 Parque Imperial | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Parque Imperial (aka com.a792139893520606f84b2188a.a23428594a) application 1.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7676 | 1 Home Made Air Freshener Project | 1 Home Made Air Freshener | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Home Made Air Freshener (aka com.wHomeMadeAirFreshener) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5702 | 1 Skyboardapps | 1 Penguin Run | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Penguin Run (aka com.skyboard.google.penguinRun) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7021 | 1 Leg Surgery - Kids Games Project | 1 Leg Surgery - Kids Games | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Leg Surgery - Kids Games (aka com.harriskerioe.legsurgery) application 1.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7536 | 1 Serviceacademyforums | 1 Service Academy Forums | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Service Academy Forums (aka com.tapatalk.serviceacademyforumscom) application 3.6.12 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6967 | 1 Vivonet | 1 Albion College | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Albion College (aka com.vivomobile.albioncollege) application 2.1.16 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6001 | 1 Gewara | 1 Gewara | 2025-04-12 | 5.4 MEDIUM | N/A |
| The gewara (aka com.gewara) application 5.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7668 | 1 Inzeratyzdarma | 1 Ads Free. Cz Advert | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Ads Free. Cz advert (aka cz.inzeratyzdarma.cz) application 1.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5642 | 1 Impi | 1 Impi Mobile Security | 2025-04-12 | 5.4 MEDIUM | N/A |
| The IMPI Mobile Security (aka com.impi) application 2.1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6700 | 1 Nba | 1 Nba Game Time 2013-2014 | 2025-04-12 | 5.4 MEDIUM | N/A |
| The NBA Game Time 2013-2014 (aka com.nbadigital.gametimelite) application 4.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5747 | 1 Comcast | 1 Xfinity Constant Guard Mobile | 2025-04-12 | 5.4 MEDIUM | N/A |
| The XFINITY Constant Guard Mobile (aka com.whitesky.mobile.android) application 3.1.140603 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5593 | 1 Christiancafe | 1 Christian Dating Cafe | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Christian Dating Cafe (aka com.christiancafe.mobile.android) application 1.0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5957 | 1 Linkyungame | 1 Alien War Survivors | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Alien War Survivors (aka com.ly.a13.gp) application 1.3.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7608 | 1 Carrierenterprise | 1 Carrier Enterprise Hvac Assist | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Carrier Enterprise HVAC Assist (aka com.es.CE) application 4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2016-2306 | 1 Ecava | 1 Integraxor | 2025-04-12 | 7.8 HIGH | 7.5 HIGH |
| The HMI web server in Ecava IntegraXor before 5.0 build 4522 allows remote attackers to obtain sensitive cleartext information by sniffing the network. | |||||