Skip to main content
CVE-2014-6025 MEDIUM This Month

The Chartboost library before 2.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Chartboost Library
NVD
CVSS 2.0
5.4
EPSS
0.2%
CVE-2014-6024 MEDIUM This Month

The Flurry library before 3.4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Flurry Analytics Android
NVD
CVSS 2.0
5.4
EPSS
0.2%
CVE-2014-5607 MEDIUM This Month

The Where's My Water? Free (aka com.disney.WMWLite) application 1.9.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Where S My Water Free
NVD
CVSS 2.0
5.4
EPSS
0.2%
CVE-2014-5830 MEDIUM This Month

The Farm Frenzy Gold (aka com.herocraft.game.farmfrenzy.gold) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Farm Frenzy Gold
NVD
CVSS 2.0
5.4
EPSS
0.2%
CVE-2014-5604 MEDIUM This Month

The Akinator the Genie FREE (aka com.digidust.elokence.akinator.freemium) application 2.46 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Akinator The Genie Free
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5593 MEDIUM This Month

The Christian Dating Cafe (aka com.christiancafe.mobile.android) application 1.0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Christian Dating Cafe
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5856 MEDIUM This Month

The Selfie Camera -Facial Beauty- (aka com.cfinc.cunpic) application 1.2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Selfie Camera Facial Beauty
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5855 MEDIUM This Month

The CJmall (aka com.cjoshppingphone) application 4.1.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Cjmall
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5854 MEDIUM This Month

The Windows Live Hotmail PUSH mail (aka com.clearhub.wl) application 1.00.97 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Microsoft Windows Live Hotmail Push Mail
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5853 MEDIUM This Month

The Knights N Squires (aka com.com2us.imhero.normal.freefull.google.global.android.common) application 1.1.2 for Android does not verify X.509 certificates from SSL servers, which allows. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Knights N Squires
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5852 MEDIUM This Month

The Kakao (aka com.com2us.tinypang.kakao.freefull2.google.global.android.common) application 2.11.1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Kakao
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5851 MEDIUM This Month

The Dark Summoner (aka com.darksummoner) application 1.03.39 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Dark Summoner
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5850 MEDIUM This Month

The Kaave Fali (aka com.didilabs.kaavefali) application 1.5.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Kaave Fali
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5849 MEDIUM This Month

The Maleficent Free Fall (aka com.disney.maleficent_goo) application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Maleficent Free Fall
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5848 MEDIUM This Month

The Dubstep Hero (aka com.electricpunch.dubstephero) application 1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Dubstep Hero
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5847 MEDIUM This Month

The Big Win Slots - Slot Machines (aka com.gosub60.BigWinSlots) application 1.11.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Big Win Slots Slot Machines
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5846 MEDIUM This Month

The Fairy Princess Makeover Salon (aka com.mobgams.dressup.fairy.princess.makeover) application 1.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Fairy Princess Makeover Salon
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5845 MEDIUM This Month

The Strike Fighters Israel (aka com.thirdwire.strikefighters.mideast.android) application 1.2.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Strike Fighters Israel
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5844 MEDIUM This Month

The Alsunna (aka com.wAlsunna) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Alsunna
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5843 MEDIUM This Month

The ADP AGENCY Immobiliare (aka com.wAdpagencyAndroid) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Adp Agency Immobiliare
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5842 MEDIUM This Month

The 2G Live Tv (aka com.ww2GLiveTv) application 0.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure 2G Live Tv
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5841 MEDIUM This Month

The Girls Calendar Period&Weight (aka jp.co.cybird.apps.lifestyle.cal) application 3.2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Girls Calendar Period Weight
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5840 MEDIUM This Month

The forfone: Free Calls & Messages (aka com.forfone.sip) forfone application 1.5.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Forfone
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5839 MEDIUM This Month

The Acces Compte (aka com.fullsix.android.labanquepostale.accountaccess) application 3.2.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Acces Compte
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5838 MEDIUM This Month

The Girls Games - Shoes Maker (aka com.g6677.android.shoemaker) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Girls Games Shoes Maker
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5837 MEDIUM This Month

The My Railway (aka com.gameinsight.myrailway) application 1.1.33 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure My Railway
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5836 MEDIUM This Month

The GittiGidiyor (aka com.gittigidiyormobil) application 1.4.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Gittigidiyor
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5835 MEDIUM This Month

The Club Personal (aka com.globant.clubpersonal) application 2.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Club Personal
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5834 MEDIUM This Month

The Solitaire Deluxe (aka com.gosub60.solfree2) application 2.8.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Solitaire Deluxe
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5833 MEDIUM This Month

The FriendCaster Chat (aka com.handmark.friendcaster.chat) application 2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Friendcaster Chat
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5832 MEDIUM This Month

The hananbank (aka com.hanabank.ebk.channel.android.hananbank) application 4.06 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Hanabank
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5831 MEDIUM This Month

The Hotel Story: Resort Simulation (aka com.happylabs.hotelstory) application 1.7.9B for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Hotel Story
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5829 MEDIUM This Month

The Hobby Lobby Stores (aka com.hobbylobbystores.android) application 2.1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Hobby Lobby Stores
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5828 MEDIUM This Month

The 3Kundenzone (aka com.hutchison3g.at.android.selfcare) application 2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure 3Kundenzone
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5827 MEDIUM This Month

The Ibotta - Better than Coupons. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Ibotta Better Than Coupons
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5826 MEDIUM This Month

The Rix GO Locker Theme (aka com.jiubang.goscreenlock.theme.rix.getjar) application 1.20.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Rix Go Locker Theme
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5825 MEDIUM This Month

The Guess The Movie (aka com.june.guessthemovie) application 2.982 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Guess The Movie
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5824 MEDIUM This Month

The longjiang (aka com.longjiang.kr) application 2.0.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Longjiang
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5823 MEDIUM This Month

The The Cleaner - Speed up & Clean (aka com.liquidum.thecleaner) application 1.4.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure The Cleaner Speed Up Clean
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5822 MEDIUM This Month

The VK Kate Mobile (aka com.perm.kate) application 9.6.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Vk Kate Mobile
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5821 MEDIUM This Month

The Guitar Tuner Free - GuitarTuna (aka com.ovelin.guitartuna) application 2.4.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Guitar Tuner Free Guitartuna
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5820 MEDIUM This Month

The OkCupid Dating (com.okcupid.okcupid) application 3.4.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Okcupid Dating
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5819 MEDIUM This Month

The PHONE for Google Voice & GTalk (aka com.moplus.gvphone) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Phone For Google Voice Gtalk
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5818 MEDIUM This Month

The Tiny Tower (aka com.mobage.ww.a560.tinytower_android) application 1.7.0.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Tiny Tower
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5817 MEDIUM This Month

The Mini Pets (aka com.miniclip.animalshelter) application 2.0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Mini Pets
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5816 MEDIUM This Month

The MeiPai (aka com.meitu.meipaimv) application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Meipai
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5815 MEDIUM This Month

The Solitaire Arena (aka com.mavenhut.solitaire) application 1.0.15 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Solitaire Arena
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5813 MEDIUM This Month

The lostword (aka zozo.android.lostword) application 5.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Lostword
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5812 MEDIUM This Month

The VDM Officiel (aka vdm.activities) application 5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Vdm Officiel
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5811 MEDIUM This Month

The ZOOM Cloud Meetings (aka us.zoom.videomeetings) application @7F060008 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Zoom Cloud Meetings
NVD
CVSS 2.0
5.4
EPSS
0.1%
Page 1 of 7 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy