They responded to the email listed in the Google Play page for the app the next day. They were part of the 0.1% of contacted vendors who responded positively about fixing the vulnerability.pic.twitter.com/d4UnCGguLv
CM Browser didn't even validate HTTPS certificates for visited websites until I told them that they should. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5655 … Hey, look at that! A CVE ID that refers to this particular vulnerability. This must've got assigned before I was told to cut it out!pic.twitter.com/mZZHysw0gU
-
-
This Tweet is unavailable.
-
- 1 more reply
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.