CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In September 2014

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
501 CVE-2014-5793 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Bilgi Yarisi (aka net.mobilecraft.bilgiyarisi) application 1.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
502 CVE-2014-5792 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Reign of Dragons: Build-Battle (aka net.gree.android.pf.greeapp57501) application 2.4.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
503 CVE-2014-5791 310 +Info 2014-09-09 2014-09-19
5.4
None Local Network Medium Not required Partial Partial Partial
The Daum Cloud (aka net.daum.android.cloud) application 1.6.18 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
504 CVE-2014-5790 310 +Info 2014-09-09 2014-09-19
5.4
None Local Network Medium Not required Partial Partial Partial
The Pets Fun House (aka mominis.Generic_Android.Pets_Fun_House) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
505 CVE-2014-5789 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Ninja Chicken Ooga Booga (aka mominis.Generic_Android.Ninja_Chicken_Ooga_Booga) application 1.4.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
506 CVE-2014-5788 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Ninja Chicken Adventure Island (aka mominis.Generic_Android.Ninja_Chicken_Adventure_Island) application 1.1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
507 CVE-2014-5787 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Ninja Chicken (aka mominis.Generic_Android.Ninja_Chicken) application 1.7.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
508 CVE-2014-5786 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Jewels & Diamonds (aka mominis.Generic_Android.Jewels_and_Diamonds) application 1.1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
509 CVE-2014-5785 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Bouncy Bill World-Cup (aka mominis.Generic_Android.Bouncy_Bill_World_Cup) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
510 CVE-2014-5784 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Bouncy Bill Seasons (aka mominis.Generic_Android.Bouncy_Bill_Seasons) application 1.3.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
511 CVE-2014-5783 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Bouncy Bill Monster Smasher ed (aka mominis.Generic_Android.Bouncy_Bill_Monster_Smasher_Edition) application 1.0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
512 CVE-2014-5782 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Bouncy Bill Halloween (aka mominis.Generic_Android.Bouncy_Bill_Halloween) application 1.0.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
513 CVE-2014-5781 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Bouncy Bill Easter Tales (aka mominis.Generic_Android.Bouncy_Bill_Easter_Tales) application 1.0.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
514 CVE-2014-5780 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Bouncy Bill (aka mominis.Generic_Android.Bouncy_Bill) application 1.9.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
515 CVE-2014-5779 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Jack'd - Gay Chat & Dating (aka mobi.jackd.android) application 1.9.0a for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
516 CVE-2014-5778 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Pou (aka me.pou.app) application 1.4.53 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
517 CVE-2014-5777 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The icon wallpaper dressup-CocoPPa (aka jp.united.app.cocoppa) application 2.8.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
518 CVE-2014-5776 310 +Info 2014-09-09 2015-02-05
5.4
None Local Network Medium Not required Partial Partial Partial
The PlayMemories Online (aka jp.co.sony.tablet.PersonalSpace) application 4.2.0.05070 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
519 CVE-2014-5775 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Super Fast Browser (aka iron.web.jalepano.browser) application 2.0.5.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
520 CVE-2014-5774 310 +Info 2014-09-09 2014-09-17
5.4
None Local Network Medium Not required Partial Partial Partial
The Web Browser & Explorer (aka internetexplorer.browser.webexplorer) application 4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
521 CVE-2014-5773 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The RegisteredAssistant (aka Icr.RegisteredAssistant) application 0.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
522 CVE-2014-5772 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Government Bookstore (aka hksarg.isd.sop.govbookstore) application 1.01 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
523 CVE-2014-5771 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Credit Union of Texas Mobile (aka Fi_Mobile.CUOT) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
524 CVE-2014-5770 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Web Browser for Android (aka explore.web.browser) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
525 CVE-2014-5769 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Mobiscope Local (aka ehs.mobiscope.kernel) application 1.05 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
526 CVE-2014-5768 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Food Planner (aka dk.boggie.madplan.android) application 4.8.4.3-google for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
527 CVE-2014-5767 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The IM+ (aka de.shapeservices.impluslite) application 6.6.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
528 CVE-2014-5766 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Uber B2B (aka de.mobileeventguide.uberb2b) application 1.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
529 CVE-2014-5765 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Paint for Friends (aka de.lotumlabs.buddypainting) application 1.5.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
530 CVE-2014-5764 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Antivirus Free (aka com.zrgiu.antivirus) application 7.2.16.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
531 CVE-2014-5763 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Kid Mode: Free Games + Lock (aka com.zoodles.kidmode) application 4.9.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
532 CVE-2014-5762 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Cut the Rope: Time Travel (aka com.zeptolab.timetravel.free.google) application 1.3.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
533 CVE-2014-5761 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Zipcar (aka com.zc.android) application 3.4.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
534 CVE-2014-5760 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Pizza Hut (aka com.yum.pizzahut) application 2.0.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
535 CVE-2014-5759 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Awesome Antivirus 2014 (aka com.yoursite.top5antivirus2014) application 1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
536 CVE-2014-5758 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Yellow Pages Local Search (aka com.yellowbook.android2) application 11.0.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
537 CVE-2014-5757 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Buy Tickets (aka com.xcr.android.buytickets) application 2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
538 CVE-2014-5756 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Buy 99 Cents Only Products (aka com.ww99CentsOnlyStores) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
539 CVE-2014-5755 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The verizon (aka com.wverizonwirelessbill) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
540 CVE-2014-5754 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Verizon Instant Refills 24/7 (aka com.wVerizonInstantRefill247) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
541 CVE-2014-5753 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Twitter No Background (aka com.wTwitternobackground) application 0.85.13509.97828 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
542 CVE-2014-5752 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The wTradersActivity (aka com.wTradersActivity) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
543 CVE-2014-5751 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Tor Browser the Short Guide (aka com.wTorShortUserManual) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
544 CVE-2014-5750 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Pro Bet Tips (aka com.wProBetTips) application 0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
545 CVE-2014-5749 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Jelly Splash (aka com.wooga.jelly_splash) application 1.11.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
546 CVE-2014-5748 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The wK12olslogin (aka com.wK12olslogin) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
547 CVE-2014-5747 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The XFINITY Constant Guard Mobile (aka com.whitesky.mobile.android) application 3.1.140603 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
548 CVE-2014-5746 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Government Best Jobs (aka com.wGovernmentBestJobs) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
549 CVE-2014-5745 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The FREE Pageplus Activation (aka com.wFREEPageplusActivations) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
550 CVE-2014-5744 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The RE-VOLT 2 : MULTIPLAYER (aka com.wegoi.revolt2multiplayer) application 1.1.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
Total number of vulnerabilities : 1150   Page : 1 2 3 4 5 6 7 8 9 10 11 (This Page)12 13 14 15 16 17 18 19 20 21 22 23
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.