Total
2448 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-7341 | 1 Sasync | 1 Sasync | 2025-04-12 | 5.4 MEDIUM | N/A |
| The SAsync (aka com.sasync.sasyncmap) application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5995 | 1 Ericpol | 1 Ewus Mobile | 2025-04-12 | 5.4 MEDIUM | N/A |
| The eWUS mobile (aka pl.dreryk.ewustest) application 1.4.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6992 | 1 Timelessblack | 1 Timeless Black | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Timeless Black (aka com.apptive.android.apps.timeless) application 2.10.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7062 | 1 Association Min Ajlik Project | 1 Association Min Ajlik | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Association Min Ajlik (aka com.association.min.ajlik) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5832 | 1 Hanabank | 1 Hanabank | 2025-04-12 | 5.4 MEDIUM | N/A |
| The hananbank (aka com.hanabank.ebk.channel.android.hananbank) application 4.06 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5894 | 1 Pingshow | 1 Airetalk Text Call \& More\! | 2025-04-12 | 5.4 MEDIUM | N/A |
| The AireTalk: Text, Call, & More! (aka com.pingshow.amper) application 2.0.73 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5955 | 1 Stephenvarga | 1 Atomic Fusion | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Atomic Fusion (aka com.bytesized.fusion) application 1.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2015-2434 | 1 Microsoft | 1 Xml Core Services | 2025-04-12 | 4.3 MEDIUM | N/A |
| Microsoft XML Core Services 3.0 and 5.0 supports SSL 2.0, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and conducting a decryption attack, aka "MSXML Information Disclosure Vulnerability," a different vulnerability than CVE-2015-2471. | |||||
| CVE-2014-7546 | 1 Buddhist Prayer Project | 1 Buddhist Prayer | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Buddhist Prayer (aka com.buddhist.prayer.mantra.sutra) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6825 | 1 Teatrofrancoparenti | 1 Teatro Franco Parenti | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Teatro Franco Parenti (aka com.mintlab.mx.teatroparenti) application 1.4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6656 | 1 Drar-eym | 1 Drareym | 2025-04-12 | 5.4 MEDIUM | N/A |
| The drareym (aka com.drareym) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5719 | 1 Timuz | 1 Bike Racing 2014 | 2025-04-12 | 5.4 MEDIUM | N/A |
| The BIKE RACING 2014 (aka com.timuzsolutions.bikeracing2014) application 1.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5992 | 1 Successsecrets Project | 1 Successsecrets | 2025-04-12 | 5.4 MEDIUM | N/A |
| The successsecrets (aka com.alek.successsecrets) application 1.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5686 | 1 Runtastic | 1 Runtastic Me | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Runtastic Me (aka com.runtastic.android.me.lite) application 1.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5783 | 1 Playscape | 1 Bouncy Bill Monster Smasher Ed | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Bouncy Bill Monster Smasher ed (aka mominis.Generic_Android.Bouncy_Bill_Monster_Smasher_Edition) application 1.0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5672 | 1 Nq | 1 Nq Mobile Security \& Antivirus | 2025-04-12 | 5.4 MEDIUM | N/A |
| The NQ Mobile Security & Antivirus (aka com.nqmobile.antivirus20) application 7.2.16.00 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7103 | 1 Oskarshamnsliv Project | 1 Oskarshamnsliv | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Oskarshamnsliv (aka appinventor.ai_stadslivsguiden.Oskarshamnsliv) application 6.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7777 | 1 Gcspublishing | 1 Slingshot Forum | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Slingshot Forum (aka com.tapatalk.theslingshotforumcom) application 3.9.14 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6983 | 1 Nbe | 1 Nbe | 2025-04-12 | 5.4 MEDIUM | N/A |
| The NBE (aka com.nbe.app) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6728 | 1 Mythinkpal | 1 Thinkpal | 2025-04-12 | 5.4 MEDIUM | N/A |
| The ThinkPal (aka com.mythinkpalapp) application 1.6.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||