Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2014-5239

The Microsoft Outlook.com application before 7.8.2.12.49.7090 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.053
EPSS Ranking 89.7%
CVSS Severity
CVSS v2 Score 4.0
Products affected by CVE-2014-5239
  • Microsoft » Outlook.com » Version: 7.8.2.10.47.7365
    cpe:2.3:a:microsoft:outlook.com:7.8.2.10.47.7365
  • Microsoft » Outlook.com » Version: 7.8.2.11.48.4848
    cpe:2.3:a:microsoft:outlook.com:7.8.2.11.48.4848
  • Microsoft » Outlook.com » Version: 7.8.2.12.49.0430
    cpe:2.3:a:microsoft:outlook.com:7.8.2.12.49.0430
  • Microsoft » Outlook.com » Version: 7.8.2.12.49.5701
    cpe:2.3:a:microsoft:outlook.com:7.8.2.12.49.5701
  • Microsoft » Outlook.com » Version: 7.8.2.12.49.6434
    cpe:2.3:a:microsoft:outlook.com:7.8.2.12.49.6434


Products
Pricing
Contact Us

Shodan ® - All rights reserved