1 results (0.004 seconds)

CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0

CVE-2014-5868

https://notcve.org/view.php?id=CVE-2014-5868

11 Sep 2014 — The Cisco Technical Support (aka com.cisco.swtg_android) application 3.7.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. La aplicación Cisco Technical Support (también conocido como com.cisco.swtg_android) 3.7.1 para Android no verifica los certificados X.509 de los servidores SSL, lo que permite a atacantes man-in-the-middle falsificar servidores y obtener información sen... • http://www.kb.cert.org/vuls/id/582497 • CWE-310: Cryptographic Issues •