CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In October 2014

CVSS Scores Greater Than: 0   1   2   3   4   5   6   7   8   9  
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
201 CVE-2014-7719 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The BASEBALL MANAGER K (aka com.cjenm.yagamkgoogle) application 1.13 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
202 CVE-2014-7718 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Travel+Leisure (aka com.magzter.travelleisure) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
203 CVE-2014-7717 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Mills-Hazel Property Mgmt (aka com.appexpress.millshazelpropertymanagement) application 3.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
204 CVE-2014-7716 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Ultimate Christian Radios (aka com.ngg.ultimatechristianradios) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
205 CVE-2014-7715 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The GIGA HOBBY (aka com.innopage.store.gigahobby) application 1.0.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
206 CVE-2014-7714 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The ibon (aka tw.net.pic.mobi) application 3.2.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
207 CVE-2014-7713 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Skin&Ink Magazine (aka com.triactivemedia.skinandink) application @7F08017A for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
208 CVE-2014-7712 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Tiket.com Hotel & Flight (aka com.tiket.gits) application 1.1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
209 CVE-2014-7710 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The India Today Telugu (aka com.magzter.indiatoday.telugu) application 3.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
210 CVE-2014-7708 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Raven - The Culture Lover (aka com.booksbyraven) application 1.60 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
211 CVE-2014-7707 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Outdoor Design And Living (aka com.pocketmagsau.outdoordesignandliving) application @7F080181 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
212 CVE-2014-7705 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Atkins Diet Free Shopping List (aka com.wAtkinsDietFreeShoppingList) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
213 CVE-2014-7703 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Terrorizer Magazine (aka com.triactivemedia.terrorizer) application @7F08017A for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
214 CVE-2014-7702 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The ahtty (aka com.crevation.babylon.ahtty) application 1.97.16 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
215 CVE-2014-7701 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The DoNotTrackMe - Mobile Privacy (aka com.abine.dnt) application 1.1.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
216 CVE-2014-7700 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Flying Fox (aka com.chillingo.slyfoxfree.android.aja) application 1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
217 CVE-2014-7698 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Xinhua International (aka org.xinhua.xnews_international) application 5.5.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
218 CVE-2014-7697 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Eyvah! Bosandim ozgurum (aka com.wEyvahBosandimBlog) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
219 CVE-2014-7696 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Halftime Magazine (aka com.magzter.halftimemagazine) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
220 CVE-2014-7695 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The easaa Baoneng (aka com.easaa.baoneng) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
221 CVE-2014-7694 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Corvette Museum (aka com.app_corvettemuseum.layout) application 1.399 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
222 CVE-2014-7693 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The JusApp! (aka com.tapatalk.jusappcombrforum) application 3.7.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
223 CVE-2014-7692 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Lent Experience (aka com.wLentExperience) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
224 CVE-2014-7691 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Life Story of Sheikh Mujib (aka com.wbongobondho) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
225 CVE-2014-7690 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The myfone Shopping (aka com.twm.pt.eccart) application 2.1.01.00.040 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
226 CVE-2014-7689 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The GzoneRC - The RC Hobby Hub (aka com.wGzoneRC) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
227 CVE-2014-7688 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Home Improvement (aka com.whomeimprovementapp) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
228 CVE-2014-7686 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The So. Co. Business Partnership (aka com.ChamberMe.SCBPSOUTHERNCO) application 3.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
229 CVE-2014-7685 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Razer Comms - Gaming Messenger (aka com.razerzone.comms) application 1.3.07 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
230 CVE-2014-7683 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Free Canadian Author Previews (aka com.booksellerscanada.authorpreview) application 1.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
231 CVE-2014-7682 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The GR8! TV (aka com.magzter.greighttv) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
232 CVE-2014-7681 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The VMware vForums 2014 (aka com.coreapps.android.followme.vmwarevforums) application 6.0.9.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
233 CVE-2014-7677 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Scudetto (aka com.scudetto) application 2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
234 CVE-2014-7676 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Home Made Air Freshener (aka com.wHomeMadeAirFreshener) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
235 CVE-2014-7674 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The TicketOne.it (aka it.ticketone.mobile.app.Android) application 2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
236 CVE-2014-7671 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Tekno Apsis (aka com.teknoapsis) application 2.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
237 CVE-2014-7670 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Motor Town: Machine Soul Free (aka com.alawar.motortownfree) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
238 CVE-2014-7668 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Ads Free. Cz advert (aka cz.inzeratyzdarma.cz) application 1.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
239 CVE-2014-7667 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Coca-Cola FM Honduras (aka com.enyetech.radio.coca_cola.fm_hn) application 2.0.41725 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
240 CVE-2014-7666 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The American Waterfowler (aka com.magazinecloner.americanwaterfowler) application @7F0801AA for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
241 CVE-2014-7664 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Bilingual Magic Ball Relajo (aka com.wBilingualMagicBallRelajo) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
242 CVE-2014-7663 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Right to the Nitty Gritty (aka com.wGoNittyGritty) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
243 CVE-2014-7661 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Masquito Blogger (aka com.wmasquito) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
244 CVE-2014-7660 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Gent Magazine (aka com.magzter.thegentmagazine) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
245 CVE-2014-7659 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The ExpeditersOnline.com Forum (aka com.quoord.tapatalkeo.activity) application 3.7.13 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
246 CVE-2014-7656 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Indian Management (aka com.magzter.indianmanagement) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
247 CVE-2014-7655 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Dresden Transport Museum (aka de.appack.project.vmd) application 2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
248 CVE-2014-7652 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Magicam Photo Magic Editor (aka mobi.magicam.editor) application 5.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
249 CVE-2014-7650 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The JJA- Juvenile Justice Act 1986 (aka com.felix.jja) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
250 CVE-2014-7649 310 +Info 2014-10-21 2014-11-14
5.4
 None Local Network Medium Not required Partial Partial Partial
The Classic Car Buyer (aka com.magazinecloner.carbuyer) application @7F08017A for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
Total number of vulnerabilities : 1414   Page : 1 2 3 4 5 (This Page)6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.