CVE-2014-5838

The Girls Games - Shoes Maker (aka com.g6677.android.shoemaker) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Published : 2014-09-09 10:55 Updated : 2014-09-21 01:04

5.4
CVSS Score More info
Score 5.4 / 10
5.4
Vendor Product Version URI
6677g Girls Games - Shoes Maker 1.0.1 cpe:/a:6677g:girls_games_-_shoes_maker:1.0.1::~~~android~~
  1. 6677g (1) Search CVE
    1. Girls Games - Shoes Maker (1) Search CVE
      1. 1.0.1

CWE

ID Name Description Links
CWE-310 Cryptographic Issues Weaknesses in this category are related to the use of cryptography. CVE

History of changes

Date Event
2014-09-09 10:55

New CVE