Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Candy Blast Project Subscribe
Filtered by product Candy Blast
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-5858 1 Candy Blast Project 1 Candy Blast 2014-09-21 5.4 MEDIUM N/A
The Candy Blast (aka com.appgame7.candyblast) application 1.1.001 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.