Search
Total
86024 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2014-6742 | 1 All Around Cyprus Project | 1 All Around Cyprus | 2014-11-14 | 5.4 MEDIUM | N/A |
| The All around Cyprus (aka com.cyprus.newspapers) application 2.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6744 | 1 Al-ahsa News Project | 1 Al-ahsa News | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Al-Ahsa News (aka com.alahsa.news) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6745 | 1 Sosocome | 1 Family Location | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Family Location (aka com.sosocome.family) application 3.4 2014-5-20 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6746 | 1 Infinitiusa | 1 Infiniti Roadside Assistance | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Infiniti Roadside Assistance (aka com.ccas.rsa.common.infiniti) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6747 | 1 Seeon | 1 Seeon | 2014-11-14 | 5.4 MEDIUM | N/A |
| The SeeOn (aka com.seeon) application 4.0.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6748 | 1 Gemaire | 1 Gemaire\'s Hvac Assist | 2014-11-14 | 5.4 MEDIUM | N/A |
| The GEMAIRE's HVAC Assist (aka com.es.Gemaire) application 5.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6749 | 1 Ananursespace | 1 American Nurses Association | 2014-11-14 | 5.4 MEDIUM | N/A |
| The American Nurses Association (aka com.dub.poweredbydub.assoc.ana) application 1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6751 | 1 Grasshopper | 1 Grasshopper Beta | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Grasshopper Beta (aka com.grasshopper.dialer) application 2.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6752 | 1 Mindless Behavior Fan Base Project | 1 Mindless Behavior Fan Base | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Mindless Behavior Fan Base (aka com.mindless.behavior.fan.base) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6753 | 1 Halanew | 1 Sunnat E Rasool | 2014-11-14 | 5.4 MEDIUM | N/A |
| The sunnat e rasool (aka com.imsoft.sunnat_e_rasool) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6754 | 1 Vector | 1 Vector Outage Manager | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Vector Outage Manager (aka nz.co.vector.outagemanager) application 1.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6755 | 1 Shiftdelete | 1 Sdn Forum | 2014-11-14 | 5.4 MEDIUM | N/A |
| The SDN Forum (TapaTalk) (aka com.tapatalk.forumshiftdeletenet) application 3.6.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6756 | 1 Biais | 1 Reddit Aww | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Reddit Aww (aka org.biais.redditawww) application 1.2.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6757 | 1 Allqoranvideos | 1 Koran - Alqoranvideos | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Koran - AlqoranVideos (aka com.alqoran.videos.example) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6758 | 1 Mgsasia | 1 Qin Story | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Qin Story (aka com.kongzhong.tjmammoth.android.cqqslengp) application 1.00 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6759 | 1 Downton Abbey Fan Portal Project | 1 Downton Abbey Fan Portal | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Downton Abbey Fan Portal (aka com.downton.abbey.fan.portal) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6760 | 1 Haremthief | 1 Harem Thief Dating | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Harem Thief Dating (aka com.haremthief.haremthief) application 1.2.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6761 | 1 Pimpstore | 1 Aprende A Meditar | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Aprende a Meditar (aka com.rareartifact.aprendeameditar544CB0A2) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6762 | 1 Bongomovie Project | 1 Bongomovie | 2014-11-14 | 5.4 MEDIUM | N/A |
| The bongomovie (aka com.mbwasi.bongomovie) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6763 | 1 Secondfiction | 1 Codename Birdgame | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Codename Birdgame (aka com.devsecondfictioncom.devsecondfictioncom.birdadhoc) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6764 | 1 Assyrianapp | 1 Assyrian | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Assyrian (aka com.b2.assyrian.activity) application 2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6765 | 1 Mibizapps | 1 No Fuss Home Loans | 2014-11-14 | 5.4 MEDIUM | N/A |
| The No Fuss Home Loans (aka com.soln.SA2CAA74BBC3AFEFE7C8BE3F3AAC499E7) application 1.0035.b0035 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6766 | 1 Afro-beat Project | 1 Afro-beat | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Afro-Beat (aka com.zero.themelock.tambourine) application 0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6768 | 1 Anywhere Anytime Yoga Workout Project | 1 Anywhere Anytime Yoga Workout | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Anywhere Anytime Yoga Workout (aka com.bayart.yoga) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6769 | 1 Mobilesoft | 1 Meteo Belgique | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Meteo Belgique (aka com.mobilesoft.belgiumweather) application 3.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6706 | 1 Erau | 1 Embry-riddle | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Embry-Riddle (aka com.dub.app.erau) application 1.4.04 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6707 | 1 7sage | 1 7sage Lsat Prep - Proctor | 2014-11-14 | 5.4 MEDIUM | N/A |
| The 7Sage LSAT Prep - Proctor (aka com.sevensage.lsat) application 2.1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6709 | 1 Techradar News Project | 1 Techradar News | 2014-11-14 | 5.4 MEDIUM | N/A |
| The TechRadar News (aka com.techradar.news) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6710 | 1 Chifro | 1 Chifro Kids Coloring Game | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Chifro Kids Coloring Game (aka com.chifro.kids_coloring_game) application 1.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6711 | 1 Nobexrc | 1 Abc Lounge Webradio | 2014-11-14 | 5.4 MEDIUM | N/A |
| The ABC Lounge Webradio (aka com.nobexinc.wls_66087017.rc) application 3.3.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6712 | 1 Iata | 1 Airlines International | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Airlines International (aka org.iata.IAMagazine) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6714 | 1 Webmd | 1 Webmd | 2014-11-14 | 5.4 MEDIUM | N/A |
| The WebMD (aka com.webmd.android) application 3.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6715 | 1 Popoinnovation | 1 Slotmachine | 2014-11-14 | 5.4 MEDIUM | N/A |
| The SlotMachine (aka com.popoinnovation.SlotMachine) application 1.03 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6716 | 1 Fastin Project | 1 Fastin | 2014-11-14 | 5.4 MEDIUM | N/A |
| The fastin (aka moda.azyae.fastin.net) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6717 | 1 Itriagehealth | 1 Itriage Health | 2014-11-14 | 5.4 MEDIUM | N/A |
| The iTriage Health (aka com.healthagen.iTriage) application 5.29 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6718 | 1 Mymobileday1 | 1 My Mobile Day | 2014-11-14 | 5.4 MEDIUM | N/A |
| The My Mobile Day (aka com.mymobileday) application 1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6719 | 1 Rapidmedia | 1 Kayak Angler Magazine | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Kayak Angler Magazine (aka air.com.yudu.ReaderAIR1360155) application 3.12.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6721 | 1 Pharmaguideline | 1 Pharmaguideline | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Pharmaguideline (aka com.pharmaguideline) application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6722 | 1 Clearfishing | 1 Pescuit Crap Lite | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Pescuit Crap Lite (aka ro.aventurilapescui.pescuitcrap.lite) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6723 | 1 Comicsplusapp | 1 Comics Plus | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Comics Plus (aka com.iversecomics.comicsplus.android) application 1.06 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6724 | 1 Soapmakingforum | 1 Soap Making | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Soap Making (aka com.tapatalk.soapmakingforumcom) application 3.7.13 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6725 | 1 Apprenticeuitgevers | 1 Schoolxm | 2014-11-14 | 5.4 MEDIUM | N/A |
| The SchoolXM (aka apprentice.schoolxm) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6727 | 1 Automon | 1 Mikeius | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Mikeius (Official App) (aka com.automon.mikeius) application 1.4.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6728 | 1 Mythinkpal | 1 Thinkpal | 2014-11-14 | 5.4 MEDIUM | N/A |
| The ThinkPal (aka com.mythinkpalapp) application 1.6.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6733 | 1 T-mobile | 1 My T-mobile | 2014-11-14 | 5.4 MEDIUM | N/A |
| The My T-Mobile (aka at.tmobile.android.myt) application @7F0C0030 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-8652 | 1 Elipse | 1 E3 | 2014-11-14 | 5.0 MEDIUM | N/A |
| Elipse E3 3.x and earlier allows remote attackers to cause a denial of service (application crash and plant outage) via a rapid series of HTTP requests to index.html on TCP port 1681. | |||||
| CVE-2014-6780 | 1 Meitalk | 1 Meitalk | 2014-11-14 | 5.4 MEDIUM | N/A |
| The MeiTalk (aka com.playjia.meitalk) application @7F060012 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-6767 | 1 Denki | 1 Juggle\! Free | 2014-11-14 | 5.4 MEDIUM | N/A |
| The Juggle! FREE (aka com.jakyl.juggleforfree) application 3.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. | |||||
| CVE-2014-4909 | 4 Canonical, Fedoraproject, Gentoo and 1 more | 4 Ubuntu Linux, Fedora, Linux and 1 more | 2014-11-14 | 6.8 MEDIUM | N/A |
| Integer overflow in the tr_bitfieldEnsureNthBitAlloced function in bitfield.c in Transmission before 2.84 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted peer message, which triggers an out-of-bounds write. | |||||
| CVE-2014-5205 | 1 Wordpress | 1 Wordpress | 2014-11-14 | 6.8 MEDIUM | N/A |
| wp-includes/pluggable.php in WordPress before 3.9.2 does not use delimiters during concatenation of action values and uid values in CSRF tokens, which makes it easier for remote attackers to bypass a CSRF protection mechanism via a brute-force attack. | |||||