3.2.6

DATE	CVE	VULNERABILITY TITLE	RISK
2014-09-09	CVE-2014-5839	Cryptographic Issues vulnerability in Labanquepostale Acces Compte 3.2.6 The Acces Compte (aka com.fullsix.android.labanquepostale.accountaccess) application 3.2.6 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. labanquepostale CWE-310	5.4