CVE-2014-7485 in Not Lost Just Somewhere Elseinformação

Sumário

de MITRE

The Not Lost Just Somewhere Else (aka it.tinytap.attsa.notlost) application 1.6.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservar

03/10/2014

Divulgação

20/10/2014

Moderação

aceite

Entrada

VDB-72363

CPE

pronto

EPSS

0.00266

KEV

não

Atividades

muito baixo

Fontes

Interested in the pricing of exploits?

See the underground prices here!