Total
2500 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-5865 | 1 Ask | 1 Ask.com | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Ask.com (aka com.ask.android) application 2.2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7798 | 1 Enyetech | 1 Coca-cola Fm Brasil | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Coca-Cola FM Brasil (aka com.enyetech.radio.coca_cola.fm_br) application 2.0.41709 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6815 | 1 Voucherry | 1 Vouch\! | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Vouch! (aka com.voucherry.voucherry) application 2.1.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6965 | 1 Faz | 1 Faz.net | 2025-04-12 | 5.4 MEDIUM | N/A |
| The FAZ.NET (aka net.faz.FAZ) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5537 | 1 Chewysoftware | 1 Abduction Stacker Free | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Abduction Stacker Free (aka air.com.chewygames.abductionstacker2) application 1.0.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6818 | 1 Core-apps | 1 Ohbm 20th Annual Meeting | 2025-04-12 | 5.4 MEDIUM | N/A |
| The OHBM 20th Annual Meeting (aka com.coreapps.android.followme.ohbm2014) application 6.0.9.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6699 | 1 Weather | 1 Weather Channel | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Weather Channel (aka com.weather.Weather) application 5.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2013-4488 | 1 Libgadu | 1 Libgadu | 2025-04-12 | 4.3 MEDIUM | N/A |
| libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. | |||||
| CVE-2014-7034 | 1 Senatorinn | 1 Senator Inn \& Spa | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Senator Inn & Spa (aka com.conduit.app_cc06e8e9659c4cf7b361ad0b7717f3a4.app) application 1.2.2.160 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5831 | 1 Happylabs | 1 Hotel Story\ | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Hotel Story: Resort Simulation (aka com.happylabs.hotelstory) application 1.7.9B for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7088 | 1 Jdm Lifestyle Project | 1 Jdm Lifestyle | 2025-04-12 | 5.4 MEDIUM | N/A |
| The JDM Lifestyle (aka com.hondatech) application 6.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6004 | 1 Pocket Cam Photo Editor Project | 1 Pocket Cam Photo Editor | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Pocket Cam Photo Editor (aka mobi.pocketcam.editor) application 3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5820 | 1 Okcupid | 1 Okcupid Dating | 2025-04-12 | 5.4 MEDIUM | N/A |
| The OkCupid Dating (com.okcupid.okcupid) application 3.4.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7612 | 1 E-kiosk | 1 E-kiosk | 2025-04-12 | 5.4 MEDIUM | N/A |
| The e-Kiosk (aka com.ekioskreader.android.pdfviewer) application 1.74 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5948 | 1 Barackobama | 1 Obama For America | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Obama for America (aka com.barackobama.ofa) application 1.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2015-1816 | 1 Theforeman | 1 Foreman | 2025-04-12 | 5.0 MEDIUM | N/A |
| Forman before 1.7.4 does not verify SSL certificates for LDAP connections, which allows man-in-the-middle attackers to spoof LDAP servers via a crafted certificate. | |||||
| CVE-2014-7745 | 1 133 | 1 Flight Manager | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Flight Manager (aka com.flightmanager.view) application 4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5838 | 1 6677g | 1 Girls Games - Shoes Maker | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Girls Games - Shoes Maker (aka com.g6677.android.shoemaker) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5652 | 1 Kicksend | 1 Kicksend Photo Prints | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Kicksend Photo Prints (aka com.kicksend.android.print) application 1.0.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2016-2113 | 2 Canonical, Samba | 2 Ubuntu Linux, Samba | 2025-04-12 | 5.8 MEDIUM | 7.4 HIGH |
| Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not verify X.509 certificates from TLS servers, which allows man-in-the-middle attackers to spoof LDAPS and HTTPS servers and obtain sensitive information via a crafted certificate. | |||||