CVE-2014-5592 in Free Dating Heart COLinformazioni

Riassunto

di MITRE

The Free Dating Heart COL (aka com.choiceoflove.dating) application 2.6.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

30/08/2014

Divulgazione

08/09/2014

Moderazione

accettato

Voce

VDB-70896

CPE

pronto

CWE

CWE-310 (confermato)

CVSS

5.4 (NVD)

EPSS

0.00271

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-5592
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-5592
CVE Details	https://www.cvedetails.com/cve/CVE-2014-5592/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!