Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-88190
HistorySep 28, 2022 - 12:00 a.m.

Velneo vClient certificate validation error vulnerability

2022-09-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
13
velneo vclient
certificate validation
vulnerability
enterprise application
mitm attack
user credentials

EPSS

0.001

Percentile

46.7%

JSON

Velneo vClient is a complete enterprise application development platform from Velneo. vClient version 28.1.3 contains a certificate validation error vulnerability that stems from a default failure to properly check the authenticity of certificates, which could be exploited by an attacker to perform a MITM attack to obtain a user’s credentials.

Related

cvelist 1
prion 1
nvd 1
cve 1
cvelist
cvelist
CVE-2021-45035 Velneo vClient Improper authentication
2022-09-23 15:02:18
prion
prion
Design/Logic Flaw
2022-09-23 16:15:00
nvd
nvd
CVE-2021-45035
2022-09-23 16:15:10
cve
cve
CVE-2021-45035
2022-09-23 16:15:10

EPSS

0.001

Percentile

46.7%

JSON
Related for CNVD-2022-88190
cvelist1prion1nvd1cve1