Skip to main content

Kindle

1 CVEs product

Monthly

CVE-2014-3908 MEDIUM This Month

The Amazon.com Kindle application before 4.5.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Google Information Disclosure Kindle
NVD
CVSS 2.0
5.8
EPSS
0.1%
EPSS 0% CVSS 5.8
MEDIUM This Month

The Amazon.com Kindle application before 4.5.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Google Information Disclosure Kindle
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy