CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In September 2014

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
551 CVE-2014-5743 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The RE-VOLT 2 : Best RC 3D Racing (aka com.wego.revolt2_global) application 1.2.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
552 CVE-2014-5742 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Eversnap Private Photo Album (aka com.weddingsnap.android) application 1.0.23 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
553 CVE-2014-5741 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Security - Complete (aka com.webroot.security.complete) application 3.6.0.6610 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
554 CVE-2014-5740 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Security - Free (aka com.webroot.security) application 3.6.0.6610 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
555 CVE-2014-5739 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Garfield's Diner (aka com.webprancer.google.GarfieldsDiner) application 1.4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
556 CVE-2014-5738 310 +Info 2014-09-09 2014-09-16
5.4
None Local Network Medium Not required Partial Partial Partial
The Garfield's Defense (aka com.webprancer.google.garfieldDefense) application 1.5.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
557 CVE-2014-5737 310 +Info 2014-09-09 2014-09-15
5.4
None Local Network Medium Not required Partial Partial Partial
The CDsoft (aka com.wCDSOFT) application 0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
558 CVE-2014-5736 310 +Info 2014-09-09 2014-09-15
5.4
None Local Network Medium Not required Partial Partial Partial
The Buy Coins (aka com.wBuyCoins) application 0.62.13364.24150 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
559 CVE-2014-5735 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Buy A Gift (aka com.wBuyAGift) application 13529.90084 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
560 CVE-2014-5734 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Buy Books (aka com.wBooksForSale) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
561 CVE-2014-5733 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Shop Love (aka com.waterwish.shoplove) application 1.05 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
562 CVE-2014-5732 310 +Info 2014-09-09 2014-12-10
5.4
None Local Network Medium Not required Partial Partial Partial
The Wamba - meet women and men (aka com.wamba.client) application 3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
563 CVE-2014-5731 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Word Search (aka com.virtuesoft.wordsearch) application 2.3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
564 CVE-2014-5730 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The russkoe TB HD (aka com.videotelecom.russkoeHD) application 3.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
565 CVE-2014-5729 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Viddy (aka com.viddy.Viddy) application 1.3.9 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
566 CVE-2014-5728 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Vevo - Watch HD Music Videos (aka com.vevo) application 2.0.27 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
567 CVE-2014-5727 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The uTorrent Remote (aka com.utorrent.web) application 1.0.20110929 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
568 CVE-2014-5726 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Security Service myBranch App (aka com.tyfone.ssfcu.mbanking) application 7.88.00.145 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
569 CVE-2014-5725 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Truecaller - Caller ID & Block (aka com.truecaller) application 4.32 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
570 CVE-2014-5724 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Gambling Insider Magazine (aka com.triactivemedia.gambling) application @7F0801AA for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
571 CVE-2014-5723 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Trapster (aka com.trapster.android) application 4.3.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
572 CVE-2014-5722 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The SwiftKey Keyboard + Emoji (aka com.touchtype.swiftkey) application 5.0.2.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
573 CVE-2014-5721 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Touchnote Postcards (aka com.touchnote.android) application 4.2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
574 CVE-2014-5720 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Bike Race Free - Top Free Game (aka com.topfreegames.bikeracefreeworld) application 4.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
575 CVE-2014-5719 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The BIKE RACING 2014 (aka com.timuzsolutions.bikeracing2014) application 1.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
576 CVE-2014-5718 310 +Info 2014-09-09 2014-09-11
5.4
None Local Network Medium Not required Partial Partial Partial
The Threadflip : Buy, Sell Fashion (aka com.threadflip.android) application 1.1.11 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
577 CVE-2014-5717 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Fashion Style (aka com.thirtysixyougames.google.starGirlSingapore) application 3.4.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
578 CVE-2014-5716 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The GUNSHIP BATTLE : Helicopter 3D (aka com.theonegames.gunshipbattle) application 1.1.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
579 CVE-2014-5715 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Street Racing (aka com.tgb.streetracing.lite5pp) application 4.0.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
580 CVE-2014-5714 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Text Me! Free Texting & Call (aka com.textmeinc.textme) application 2.5.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
581 CVE-2014-5713 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Telly - Watch the good stuff (aka com.telly) application 2.5.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
582 CVE-2014-5712 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Turbo River Racing Free (aka com.tektite.androidgames.trrfree) application 1.07 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
583 CVE-2014-5711 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Microsoft Tech Companion (aka com.technet) application 1.0.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
584 CVE-2014-5710 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Cisco Class Locator Fast Lane (aka com.tabletkings.mycompany.fastlane.cisco) application for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
585 CVE-2014-5709 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Donut Maker (aka com.sunstorm.android.donut) application 1.27 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
586 CVE-2014-5708 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Best Racing/moto Games Ranking (aka com.subapp.android.racing) application 2.2.7 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
587 CVE-2014-5707 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Bunny Run (aka com.stargirlgames.google.bunnyrun) application 1.1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
588 CVE-2014-5706 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The SomNote - Journal/Memo (aka com.somcloud.somnote) application 2.1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
589 CVE-2014-5705 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Sonic CD Lite (aka com.soa.sega.soniccdlite) application 1.0.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
590 CVE-2014-5704 310 +Info 2014-09-09 2016-06-17
5.4
None Local Network Medium Not required Partial Partial Partial
The DISH Anywhere (aka com.sm.SlingGuide.Dish) application 3.5.10 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
591 CVE-2014-5703 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Slingo Lottery Challenge (aka com.slingo.slingolotterychallenge) application 1.0.34 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
592 CVE-2014-5702 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Penguin Run (aka com.skyboard.google.penguinRun) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
593 CVE-2014-5701 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Skout: Chats. Friends. Fun. (aka com.skout.android) application 4.3.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
594 CVE-2014-5700 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Brain lab - brain age games IQ (aka com.sixdead.brainlab) application 2.37 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
595 CVE-2014-5699 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Parallel Kingdom MMO (aka com.silvermoon.client) application @7F070019 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
596 CVE-2014-5698 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Furdiburb (aka com.sheado.lite.pet) application 1.1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
597 CVE-2014-5697 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Dress Up! Girl Party (aka com.sgn.DressUp.GirlParty) application 2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
598 CVE-2014-5696 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Sonic 4 Episode II LITE (aka com.sega.sonic4ep2lite) application 2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
599 CVE-2014-5695 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Hello Kitty Cafe (aka com.sd.google.helloKittyCafe) application 1.4.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
600 CVE-2014-5694 310 +Info 2014-09-09 2014-09-12
5.4
None Local Network Medium Not required Partial Partial Partial
The Scoutmob local deals & events (aka com.scoutmob.ile) application 3.0.18 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
Total number of vulnerabilities : 1150   Page : 1 2 3 4 5 6 7 8 9 10 11 12 (This Page)13 14 15 16 17 18 19 20 21 22 23
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.