CVE-2014-6856

Name of the Vulnerable Software and Affected Versions AHRAH (aka com.vet2pet.aid219426) application 219426 for Android (affected versions not specified)

Description The issue allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate because the application does not verify X.509 certificates from SSL servers.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.