CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Security Vulnerabilities Published In October 2014

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
351 CVE-2014-7520 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Nova 92.1 FM (aka com.wNova921FM) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
352 CVE-2014-7519 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Cycling Manager Game Cff (aka com.CyclingManagerGame) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
353 CVE-2014-7518 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Bowl Expo 2014 (aka com.coreapps.android.followme.bowlexpo14) application 6.1.1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
354 CVE-2014-7517 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Myanmar Movies HD (aka com.wmyanmarmoviesHD) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
355 CVE-2014-7516 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Central East LHIN News (aka com.wCentralEastLHINNews) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
356 CVE-2014-7515 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Bail Bonds (aka com.onesolutionapps.chadlewisbailbondsandroid) application 1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
357 CVE-2014-7513 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Top Hangover Cures (aka com.TopHangoverCures) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
358 CVE-2014-7510 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Graffit It (aka com.presenttechnologies.graffitit) application 1.1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
359 CVE-2014-7509 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The A Very Short History of Japan (aka com.ireadercity.c51) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
360 CVE-2014-7508 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Help For Doc (aka com.childrens.physician.relations) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
361 CVE-2014-7507 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Hector Leal (aka ad.hector.leal.com) application 13/08/14 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
362 CVE-2014-7506 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Realtime Music Rank (aka com.blogspot.imapp.immusicrank2) application 5.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
363 CVE-2014-7505 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The AppTalk (aka com.chatatami.apptalk) application 1.4.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
364 CVE-2014-7502 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Escucha elDiario.es (aka es.lacabradev.escuchaeldiario) application 1.2.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
365 CVE-2014-7501 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Translation Widget (aka com.wTranslationGadget) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
366 CVE-2014-7499 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Sword (aka com.ireadercity.c25) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
367 CVE-2014-7498 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Space Cinema (aka it.thespacecinema.android) application 2.0.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
368 CVE-2014-7497 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Portfolium (aka com.wPortfolium) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
369 CVE-2014-7495 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The LogosQuest - Beginnings (aka com.wLogosQuest) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
370 CVE-2014-7494 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Kontan Kiosk (aka com.appsfoundry.scoopwl.id.kontankiosk) application @7F07025E for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
371 CVE-2014-7493 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The 100 Books (aka com.ireadercity.c20) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
372 CVE-2014-7492 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Secretos de belleza (aka com.rareartifact.secretosdebelleza83A55CB8) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
373 CVE-2014-7491 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Short Stories (aka com.ireadercity.c48) application 3.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
374 CVE-2014-7490 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Menaka - Marathi (aka com.magzter.menakamarathi) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
375 CVE-2014-7488 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Vineyard All In (aka com.wVineyardAllIn) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
376 CVE-2014-7487 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The ADT Aesthetic Dentistry Today (aka com.magazinecloner.aestheticdentistry) application @7F080181 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
377 CVE-2014-7486 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Mitsubishi Road Assist (aka com.agero.mitsubishi) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
378 CVE-2014-7485 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Not Lost Just Somewhere Else (aka it.tinytap.attsa.notlost) application 1.6.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
379 CVE-2014-7484 310 +Info 2014-10-20 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Coca-Cola FM Guatemala (aka com.enyetech.radio.coca_cola.fm_gu) application 2.0.41725 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
380 CVE-2014-7483 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Desire2Learn FUSION 2014 (aka com.desire2learn.fusion2012) application 4.0.729.1748 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
381 CVE-2014-7481 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The ETG Hosting (aka com.etg.web.hosting) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
382 CVE-2014-7478 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The nashaplaneta.su (aka com.wNashaPlaneta) application 1.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
383 CVE-2014-7476 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Healthy Lunch Diet Recipes (aka com.best.lunchdietrecipes) application 3.6.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
384 CVE-2014-7475 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Ionic View (aka com.ionic.viewapp) application 0.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
385 CVE-2014-7472 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The CSApp - Colegio San Agustin (aka com.goodbarber.csapp) application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
386 CVE-2014-7471 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The international-arbitration-attorney.com (aka com.w0f1d79a1010d819acbee876007d0bebc) application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
387 CVE-2014-7470 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The I Know the Movie (aka com.guilardi.jesaislefilm2) application jesais_film_android_1.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
388 CVE-2014-7469 310 +Info 2014-10-19 2014-11-18
5.4
None Local Network Medium Not required Partial Partial Partial
The Best Beginning (aka com.bbbeta) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
389 CVE-2014-7468 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The AG Klettern Odenwald (aka de.appack.project.agko) application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
390 CVE-2014-7467 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The HoneyBee Mag (aka com.magzter.honeybeemag) application 3.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
391 CVE-2014-7466 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Live TV Browser (aka com.wHDSmartBrowser) application 2.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
392 CVE-2014-7465 310 +Info 2014-10-19 2014-11-22
5.4
None Local Network Medium Not required Partial Partial Partial
The PC Advisor (aka com.triactivemedia.pcadvisor) application @7F08017A for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
393 CVE-2014-7464 310 +Info 2014-10-19 2014-11-22
5.4
None Local Network Medium Not required Partial Partial Partial
The Magic Stamp (aka vn.avagame.apotatem) application 2.8 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
394 CVE-2014-7463 310 +Info 2014-10-19 2014-11-22
5.4
None Local Network Medium Not required Partial Partial Partial
The IM5 Fans Planet (aka uk.co.pixelkicks.im5) application 2.3.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
395 CVE-2014-7462 310 +Info 2014-10-19 2014-11-22
5.4
None Local Network Medium Not required Partial Partial Partial
The Fashion Story: Neon 90's (aka com.teamlava.fashionstory39) application 1.5.6.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
396 CVE-2014-7461 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The A King Sperm by Dr. Seema Rao (aka com.wKingSperm) application 0.63.13384.23020 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
397 CVE-2014-7460 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Slots Heaven:FREE Slot Machine (aka com.twelvegigs.heaven.slots) application 1.123 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
398 CVE-2014-7459 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Press-Leader (aka com.soln.S95309F65AD59F99CFC2C710A517B0B7E) application 1.0011.b0011 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
399 CVE-2014-7458 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The BloomYou Valentine (aka com.bloomyouteam.bloomyou.valentine) application 2.4 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
400 CVE-2014-7457 310 +Info 2014-10-19 2014-11-14
5.4
None Local Network Medium Not required Partial Partial Partial
The Electronics For You (aka com.magzter.electronicsforyou) application 3.02 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
Total number of vulnerabilities : 1414   Page : 1 2 3 4 5 6 7 8 (This Page)9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.