Skip to main content
CVE-2014-7632 MEDIUM This Month

The news revolution - bahrain (aka com.news.revolution.BH) application 3.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure News Revolution Bahrain
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7631 MEDIUM This Month

The Villa Antonia (aka com.appbuilder.u7p5019) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Villa Antonia
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7630 MEDIUM This Month

The Fling Gold (aka com.mbgames.fling.gold) application 1.1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Fling Gold
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7629 MEDIUM This Month

The Yulman Stadium (aka com.dub.app.tulanestadium) application 1.4.25 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Yulman Stadium
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7628 MEDIUM This Month

The Acorn Comms (aka com.acorncomms.app) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Acorn Comms
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4906 MEDIUM This Month

The Brisbane & Queensland Alert (aka com.queensland.alert) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Brisbane Queensland Alert
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4905 MEDIUM This Month

The Clean Internet Browser (aka com.cleantab.browsesecure) application 1.36 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Clean Internet Browser
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4904 MEDIUM This Month

The Crossmo Calendar (aka com.crossmo.calendar) application 1.7.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Crossmo Calendar
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4903 MEDIUM This Month

The Kakao Bingo Garden (aka com.mocoga.bingogarden) application 1.0.14 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Kakao Bingo Garden
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4901 MEDIUM This Month

The Bond Trading (aka com.appmakr.app613309) application 197705 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Bond Trading
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4900 MEDIUM This Month

The migme (aka com.projectgoth) application 4.03.002 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Migme
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4899 MEDIUM This Month

The Indian Cement Review (aka com.magzter.indiancementreview) application 3.01 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Indian Cement Review
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4898 MEDIUM This Month

The Harivijay (aka com.upasanhar.marathi.harivijay) application 4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Harivijay
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4897 MEDIUM This Month

The Touriosity Travelmag (aka com.magzter.touriositytravelmag) application 3.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Touriosity Travelmag
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4896 MEDIUM This Month

The Parque Imperial (aka com.a792139893520606f84b2188a.a23428594a) application 1.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Parque Imperial
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4895 MEDIUM This Month

The Herpin Time Radio (aka com.herpin.time.radio) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Herpin Time Radio
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4894 MEDIUM This Month

The MyMetro (aka com.myrippleapps.mymetro) application 2.4.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Mymetro
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4892 MEDIUM This Month

The uControl Smart Home Automation (aka de.ucontrol) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Ucontrol Smart Home Automation
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4891 MEDIUM This Month

The CT iHub (aka com.concursive.ctihub) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Ct Ihub
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4890 MEDIUM This Month

The Nano Digest (aka com.magzter.nanodigest) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Nano Digest
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4889 MEDIUM This Month

The Diabetic Diet Guide (aka com.wDiabeticDietGuide) application 2.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Diabetic Diet Guide
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4888 MEDIUM This Month

The BattleFriends at Sea GOLD (aka com.tequilamobile.warshipslivegold) application 1.1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Battlefriends At Sea Gold
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4887 MEDIUM This Month

The Joint Radio Blues (aka com.nobexinc.wls_69685189.rc) application 3.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Joint Radio Blues
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4885 MEDIUM This Month

The CPWORLD Close Protection World (aka com.tapatalk.closeprotectionworldcom) application 3.4.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Cpworld Close Protection World
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-4884 MEDIUM This Month

The Conrad Hotel (aka com.wConradHotel) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Conrad Hotel
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2014-7798 MEDIUM This Month

The Coca-Cola FM Brasil (aka com.enyetech.radio.coca_cola.fm_br) application 2.0.41709 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Coca Cola Fm Brasil
NVD
CVSS 2.0
5.4
EPSS
0.0%
CVE-2014-7785 MEDIUM This Month

The AAAA Discount Bail (aka com.onesolutionapps.aaaadiscountbailandroid) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Aaaa Discount Bail
NVD
CVSS 2.0
5.4
EPSS
0.0%
CVE-2014-7644 MEDIUM This Month

The Go MSX MLS (aka com.doapps.android.realestate.RE_16b9c09c4d5b0e174208f35e7c49f9a0) application 2.3.4.MR3 for Android does not verify X.509 certificates from SSL servers, which allows. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Go Msx Mls
NVD
CVSS 2.0
5.4
EPSS
0.0%
CVE-2014-8378 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the TableField module 7.x-2.x before 7.x-2.3 allows remote authenticated users with the "administer content types" or "administer taxonomy" permission to. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Tablefield
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2014-8376 LOW PATCH Monitor

Cross-site scripting (XSS) vulnerability in the context administration sub-panel in the Site Banner module before 7.x-4.1 for Drupal allows remote authenticated users with the "Administer contexts". Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Site Banner
NVD
CVSS 2.0
3.5
EPSS
0.2%
CVE-2014-8379 LOW PATCH Monitor

Multiple cross-site scripting (XSS) vulnerabilities in the Marketo MA module before 7.x-1.5 for Drupal allow remote authenticated users with certain permissions to inject arbitrary web script or HTML. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

XSS Marketo Ma
NVD
CVSS 2.0
3.5
EPSS
0.2%
Prev Page 4 of 4

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy