| Max CVSS | 5.4 | Min CVSS | 5.4 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-5858 | 5.4 |
The Candy Blast (aka com.appgame7.candyblast) application 1.1.001 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
|
21-09-2014 - 23:31 | 10-09-2014 - 10:55 |