Man-in-the-Middle Vulnerability in Citrix ShareFile Mobile for Android
CVE-2014-1910

Currently unrated

Key Information:

Vendor
Citrix
Vendor
CVE Published:
21 February 2014

Summary

The Citrix ShareFile Mobile application for Android devices prior to version 2.4.4 lacks proper verification of X.509 certificates from SSL servers. This vulnerability permits attackers to execute man-in-the-middle attacks, enabling them to spoof legitimate servers. Consequently, these attackers can intercept and manipulate sensitive information transmitted between the application and affected servers, thus compromising data integrity and confidentiality.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.