MidnightBSD

Advisories for magicam_photo_magic_editor_project

CVE-2014-7652 MEDIUM

The Magicam Photo Magic Editor (aka mobi.magicam.editor) application 5.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
magicam_photo_magic_editor_project magicam_photo_magic_editor 5