CVE-2014-5604 in Akinator the Genie FREEinformazioni

Riassunto

di MITRE

The Akinator the Genie FREE (aka com.digidust.elokence.akinator.freemium) application 2.46 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

30/08/2014

Divulgazione

08/09/2014

Moderazione

accettato

Voce

VDB-70908

CPE

pronto

CWE

CWE-310 (confermato)

CVSS

5.4 (NVD)

EPSS

0.00265

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-5604
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-5604
CVE Details	https://www.cvedetails.com/cve/CVE-2014-5604/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!