CVE-2014-5758 in Yellow Pages Local Searchinformazioni

Riassunto

di MITRE

The Yellow Pages Local Search (aka com.yellowbook.android2) application 11.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Prenotare

30/08/2014

Divulgazione

09/09/2014

Moderazione

accettato

Voce

VDB-71059

CPE

pronto

CWE

CWE-310 (confermato)

CVSS

5.4 (NVD)

EPSS

0.00297

KEV

Attività

molto basso

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2014-5758
NVD	https://nvd.nist.gov/vuln/detail/CVE-2014-5758
CVE Details	https://www.cvedetails.com/cve/CVE-2014-5758/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!