RSS   Vulnerabilities for 'Runkeeper - gps track run walk'   RSS

2014-09-22
 
CVE-2014-5982

CWE-310
 

 
The RunKeeper - GPS Track Run Walk (aka com.fitnesskeeper.runkeeper.pro) application 4.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

 
2014-09-08
 
CVE-2014-5619

CWE-310
 

 
The RunKeeper - GPS Track Run Walk (aka com.fitnesskeeper.runkeeper.pro) application 4.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

 


Copyright 2024, cxsecurity.com

 

Back to Top