Man-in-the-Middle Vulnerability in Citrix ShareFile Mobile for Android
CVE-2014-1910
Currently unrated
Key Information:
- Vendor
- Citrix
- Vendor
- CVE Published:
- 21 February 2014
Summary
The Citrix ShareFile Mobile application for Android devices prior to version 2.4.4 lacks proper verification of X.509 certificates from SSL servers. This vulnerability permits attackers to execute man-in-the-middle attacks, enabling them to spoof legitimate servers. Consequently, these attackers can intercept and manipulate sensitive information transmitted between the application and affected servers, thus compromising data integrity and confidentiality.
References
Timeline
Vulnerability published
Vulnerability Reserved