Total
2473 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-5873 | 1 Sears | 1 Sears | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Sears (aka com.sears.android) application 6.2.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5872 | 1 Safenet-inc | 1 Safenetmobile Pass | 2026-06-17 | 5.4 MEDIUM | N/A |
| The SafeNetMobile Pass (aka securecomputing.devices.android.controller) application 8.3.7.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5871 | 1 Piwik | 1 Piwik Mobile 2 | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Piwik Mobile 2 (aka org.piwik.mobile2) application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5870 | 1 Kmart | 1 Kmart | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Kmart (aka com.kmart.android) application 6.2.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5869 | 1 Cnn | 1 Cnnmoney Portfolio | 2026-06-17 | 5.4 MEDIUM | N/A |
| The CNNMoney Portfolio (aka com.cnn.cnnmoney) application 1.03 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5868 | 1 Cisco | 1 Cisco Technical Support | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Cisco Technical Support (aka com.cisco.swtg_android) application 3.7.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5867 | 1 Sparkpay | 1 Capital One Spark | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Capital One Spark Pay (aka com.capitalone.sparkpay) application 0.9.81 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5866 | 1 Dmv.ca.gov | 1 Ca Dmv | 2026-06-17 | 5.4 MEDIUM | N/A |
| The CA DMV (aka gov.ca.dmv) application 2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5865 | 1 Ask | 1 Ask.com | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Ask.com (aka com.ask.android) application 2.2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5864 | 1 Getswish | 1 Swish Payments | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Swish payments (aka se.bankgirot.swish) application 2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5863 | 1 Netmarble | 1 Mpang.gp | 2026-06-17 | 5.4 MEDIUM | N/A |
| The mpang.gp (aka air.com.cjenm.mpang.gp) application 4.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5862 | 1 Zhwnl | 1 Ecalendar2 | 2026-06-17 | 5.4 MEDIUM | N/A |
| The ecalendar2 (aka cn.etouch.ecalendar2) application 4.5.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5861 | 1 Skout | 1 Boyahoy - Gay Chat | 2026-06-17 | 5.4 MEDIUM | N/A |
| The BoyAhoy - Gay Chat (aka com.boyahoy.android) application 4.3.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5860 | 1 Aximediasoft | 1 Slide Show Creator | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Slide Show Creator (aka com.amem) application 4.4.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5859 | 1 Animoca | 1 Star Girl\ | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Star Girl: Colors of Spring (aka com.animoca.google.starGirlSpring) application 3.4.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5858 | 1 Candy Blast Project | 1 Candy Blast | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Candy Blast (aka com.appgame7.candyblast) application 1.1.001 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5857 | 1 Avantar | 1 White \& Yellow Pages | 2026-06-17 | 5.4 MEDIUM | N/A |
| The White & Yellow Pages (aka com.avantar.wny) application 5.1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5856 | 1 Communityfactory | 1 Selfie Camera -facial Beauty- | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Selfie Camera -Facial Beauty- (aka com.cfinc.cunpic) application 1.2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5855 | 1 Cjmall | 1 Cjmall | 2026-06-17 | 5.4 MEDIUM | N/A |
| The CJmall (aka com.cjoshppingphone) application 4.1.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5854 | 1 Clearhub | 1 Windows Live Hotmail Push Mail | 2026-06-17 | 5.4 MEDIUM | N/A |
| The Windows Live Hotmail PUSH mail (aka com.clearhub.wl) application 1.00.97 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
