Researcher explains that vulnerable code re-use of zero-day in Androids CyanogenMod exposes million users to Man-In-The-Middle attacks. Experts consider this vulnerability critical due to the large number of Cyanogenmod installations worldwide, which according the official statistics are more than 10 million as of December 2013. The last version CM 11.0 M11 M11 hasnt fixed the flaw and the last released October 8th hasn’t provided a reply on the vulnerability.”]
Source: https://securityaffairs.co/wordpress/29248/mobile-2/android-cyanogenmod-zero-day.html