RSS   Vulnerabilities for 'Loving - couple essential'   RSS

2014-09-20
 
CVE-2014-5972

CWE-310
 

 
The Loving - Couple Essential (aka com.xiaoenai.app) application 4.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

 

 >>> Vendor: Loving.fm 2 Products
Loving - couple essentia
Loving - couple essential


Copyright 2024, cxsecurity.com

 

Back to Top