Skip to main content
CVE-2014-5548 MEDIUM This Month

The Christmas Words (aka air.com.sevenBulls.summerWords) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Christmas Words
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5547 MEDIUM This Month

The Mahjong Galaxy Space Lite (aka air.com.permadi.mahjongIris) application 2.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Mahjong Galaxy Space Lite
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5546 MEDIUM This Month

The Africa Memory (aka air.com.klon4enabor4e.AfricaMemory) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Africa Memory
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5545 MEDIUM This Month

The Sprint jump (aka air.com.ilaz.appilas) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Sprint Jump
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5544 MEDIUM This Month

The SongPop (aka air.com.freshplanet.games.WaM) application 1.21.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Songpop
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5543 MEDIUM This Month

The Hidden Object - Alice Free (aka air.com.differencegames.hovisionsofalicefree) application 1.0.17 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Hidden Object Alice Free
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5542 MEDIUM This Month

The Hidden Object Mystery (aka air.com.differencegames.hodetectivemysteryfree) application 1.0.65 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Hidden Object Mystery
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5541 MEDIUM This Month

The Hidden Memory - Aladdin FREE!. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Hidden Memory Aladdin Free
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5540 MEDIUM This Month

The Flick a Trade (aka air.com.cygnecode.fat) application 3.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Flick A Trade
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5539 MEDIUM This Month

The Michael Baker FCU (aka air.com.creditunionhomebanking.mb155) application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Michael Baker Federal Credit Union
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5538 MEDIUM This Month

The Westmoreland Water FCU (aka air.com.creditunionhomebanking.mb115) application 1.2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Westmoreland Water Fcu
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5537 MEDIUM This Month

The Abduction Stacker Free (aka air.com.chewygames.abductionstacker2) application 1.0.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Abduction Stacker Free
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5536 MEDIUM This Month

The Bingo Bash - Free Bingo Casino (aka air.com.bitrhymes.bingo) application 1.31.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Bingo Bash Free Bingo Casino
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5535 MEDIUM This Month

The Baby Get Up - Kids Care (aka air.brown.jordansa.getup) application 1.0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Baby Get Up Kids Care
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5534 MEDIUM This Month

The Princess Shopping (aka air.android.PrincessShopping) application 2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Princess Shopping
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5532 MEDIUM This Month

The Honolulu (aka adidas.jp.android.running.honolulu) application 2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Honolulu
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5531 MEDIUM This Month

The Abode (aka abode.webview) application 1.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Abode
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5528 MEDIUM This Month

The Appsflyer library for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Appsflyer
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5527 MEDIUM This Month

The Tapjoy library for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Tapjoy Library
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5526 MEDIUM This Month

The Inmobi library for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Inmobi
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5525 MEDIUM This Month

The MoMinis library for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Mominis Library
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5524 MEDIUM This Month

The Adcolony library for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Adcolony Library
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5711 MEDIUM This Month

The Microsoft Tech Companion (aka com.technet) application 1.0.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Microsoft Microsoft Tech Companion
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5704 MEDIUM This Month

The DISH Anywhere (aka com.sm.SlingGuide.Dish) application 3.5.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Dish Anywhere
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-5654 MEDIUM This Month

The Kaspersky Internet Security (aka com.kms.free) application 11.4.4.232 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Kaspersky Internet Security
NVD
CVSS 2.0
5.4
EPSS
0.0%
CVE-2014-5529 MEDIUM This Month

The Gameloft library for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Gameloft Library
NVD
CVSS 2.0
5.4
EPSS
0.0%
Prev Page 7 of 7

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy