Total
2500 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-7488 | 1 Highlighterstudio | 1 Vineyard All In | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Vineyard All In (aka com.wVineyardAllIn) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6000 | 1 Freshdirect | 1 Freshdirect | 2025-04-12 | 5.4 MEDIUM | N/A |
| The FreshDirect (aka com.freshdirect.android) application 2.7.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5550 | 1 Ilearnwith | 1 Animals\! Kids Preschool Games | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Animals! Kids Preschool Games (aka air.com.tribalnova.Animals) application 1.6.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7779 | 1 Kuran\'in Bilimsel Mucizeleri Project | 1 Kuran\'in Bilimsel Mucizeleri | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Kuran'in Bilimsel Mucizeleri (aka com.wKurannBilimselMucizeleri) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5695 | 1 Sanriodigital | 1 Hello Kitty Cafe | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Hello Kitty Cafe (aka com.sd.google.helloKittyCafe) application 1.4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6665 | 1 Quranedu | 1 Ahmed Bukhatir Nasheeds Tv | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Ahmed Bukhatir Nasheeds TV (aka com.wAhmedBukhatirApp) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5732 | 1 Wamba | 1 Wamba-meet Women And Men | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Wamba - meet women and men (aka com.wamba.client) application 3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6838 | 1 Twitter | 1 Groupama Toujours La | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Groupama toujours la (aka com.groupama.toujoursla) application 1.3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7634 | 1 Adopt O Pet Project | 1 Adopt O Pet | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Adopt O Pet (aka com.wFindAPet) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7761 | 1 Sincerely | 1 Ink Cards | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Ink Cards (aka com.sincerely.android.ink) application 2.0.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2013-6371 | 2 Fedoraproject, Json-c | 2 Fedora, Json-c | 2025-04-12 | 5.0 MEDIUM | N/A |
| The hash functionality in json-c before 0.12 allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted JSON data, involving collisions. | |||||
| CVE-2014-6010 | 1 Awesomewidgets | 1 Rasta Weed Widgets Hd | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Rasta Weed Widgets HD (aka aw.awesomewidgets.rastaweed) application 4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7492 | 1 Tejonstore | 1 Secretos De Belleza | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Secretos de belleza (aka com.rareartifact.secretosdebelleza83A55CB8) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7120 | 1 Pocketmags | 1 Model Laboratory | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Model Laboratory (aka com.magazinecloner.modellaboratory) application @7F080193 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5758 | 1 Yellowbook | 1 Yellow Pages Local Search | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Yellow Pages Local Search (aka com.yellowbook.android2) application 11.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7518 | 1 Core-apps | 1 Bowl Expo 2014 | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Bowl Expo 2014 (aka com.coreapps.android.followme.bowlexpo14) application 6.1.1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-7082 | 1 Imapp | 1 No Disturb | 2025-04-12 | 5.4 MEDIUM | N/A |
| The No Disturb (aka com.blogspot.imapp.imnodisturb) application 3.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-8242 | 1 Librsync Project | 1 Librsync | 2025-04-12 | 5.8 MEDIUM | N/A |
| librsync before 1.0.0 uses a truncated MD4 checksum to match blocks, which makes it easier for remote attackers to modify transmitted data via a birthday attack. | |||||
| CVE-2014-7346 | 1 Magzter | 1 Bespoke | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Bespoke (aka com.magzter.bespoke) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-5538 | 1 Amiscu | 1 Westmoreland Water Fcu | 2025-04-12 | 5.4 MEDIUM | N/A |
| The Westmoreland Water FCU (aka air.com.creditunionhomebanking.mb115) application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||