SSL Certificate Verification Flaw in Translation Widget for Android
CVE-2014-7501

Currently unrated

Key Information:

Vendor

Translation Widget Project

Status
Translation Widget
Vendor
CVE Published:
20 October 2014

What is CVE-2014-7501?

The Translation Widget application for Android version 0.1 is prone to a vulnerability that allows attackers to execute man-in-the-middle attacks. This flaw arises from the application's failure to validate X.509 certificates from SSL servers. As a result, malicious entities can spoof legitimate servers and intercept sensitive information transmitted between the user and the server. Users of this application are at risk of data exposure due to this serious security oversight.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.kb.cert.org/vuls/id/582497
third-party-advisoryx_refsource_CERT-VN
http://www.kb.cert.org/vuls/id/946465
third-party-advisoryx_refsource_CERT-VN
https://docs.google.com/spreadsheets/d/1t5GXwjw82SyunALVJ...
x_refsource_MISC

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.