runtastic CVE Vulnerabilities & CVE List (7)

Products (CPE): — CVEs: 7

runtastic vulnerability overview

This page aggregates publicly disclosed CVE and security risk information related to runtastic, with CVSS, EPSS, publication dates, and vulnerability intelligence data to help assess potential risk and remediation priority.

Vulnerability distribution trend (last 24 months)

Showing 17 of 7 CVEs
«« First « Prev Page 1 / 1 Next »
CVE Summary Source Max CVSS EPSS % Published Updated
CVE-2014-5690 The Runtastic Timer (aka com.runtastic.android.timer) application 1.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. [email protected] 5.4 0.10% 2014-09-09 2026-05-06
CVE-2014-5689 The Runtastic Road Bike (aka com.runtastic.android.roadbike.lite) application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. [email protected] 5.4 0.10% 2014-09-09 2026-05-06
CVE-2014-5688 The Runtastic Pedometer (aka com.runtastic.android.pedometer.lite) application 1.5 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. [email protected] 5.4 0.10% 2014-09-09 2026-05-06
CVE-2014-5687 The Runtastic Mountain Bike (aka com.runtastic.android.mountainbike.lite) application 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. [email protected] 5.4 0.10% 2014-09-09 2026-05-06
CVE-2014-5686 The Runtastic Me (aka com.runtastic.android.me.lite) application 1.0.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. [email protected] 5.4 0.10% 2014-09-09 2026-05-06
CVE-2014-5685 The Runtastic Heart Rate (aka com.runtastic.android.heartrate.lite) application 1.3 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. [email protected] 5.4 0.10% 2014-09-09 2026-05-06
CVE-2014-5684 The Runtastic Running & Fitness (aka com.runtastic.android) application 5.1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. [email protected] 5.4 0.10% 2014-09-09 2026-05-06
«« First « Prev Page 1 / 1 Next »
cvelogic Threat Intelligence