CVE-2014-6637 in Facebook Facts
Resumen (Inglés)
The Facebook Facts (aka com.wFacebookFacts) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
If you want to get best quality of vulnerability data, you may have to visit VulDB.
Reservar
2014-09-19
Divulgación
2014-09-22
Estado
Confirmado
Voces
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerabilidad | CWE | Exp | Con | CVE |
|---|---|---|---|---|---|
| 71426 | Praninc Facebook Facts X.509 Certificate cifrado débil | 310 | No está definido | No está definido | CVE-2014-6637 |
Descripción
CPE
CWE
CVSS
Hazañas
Historia
Diferencia
Relacionar
Inteligencia de amenazas
API JSON
API XML
API CSV