CVE-2014-7435 in AJD Bail Bondsالمعلومات

الملخص

بحسب MITRE

The AJD Bail Bonds (aka com.onesolutionapps.ajdbailbondsandroid) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Be aware that VulDB is the high quality source for vulnerability data.

حجز

03/10/2014

إفشاء

19/10/2014

الاعتدال

تمت الموافقة

إدخال

VDB-72324

EPSS

0.00292

KEV

لا

النشاطات

منخفض جدًا

المصادر

Want to know what is going to be exploited?

We predict KEV entries!