Transifex command-line client has improper certificate validation

🗓️ 17 May 2022 04:17:45Reported by GitHub Advisory DatabaseType

Transifex CLI <= 0.10 has insecure certificate validatio

Reporter	Title	Published	Views	Family All 24
Prion	Design/Logic Flaw	2 May 201401:59	–	prion
Prion	Command injection	2 May 201401:59	–	prion
NVD	CVE-2013-7110	2 May 201401:59	–	nvd
NVD	CVE-2013-2073	2 May 201401:59	–	nvd
UbuntuCve	CVE-2013-7110	2 May 201400:00	–	ubuntucve
UbuntuCve	CVE-2013-2073	2 May 201400:00	–	ubuntucve
OSV	PYSEC-2014-72	2 May 201401:59	–	osv
Debian CVE	CVE-2013-7110	2 May 201401:59	–	debiancve
Debian CVE	CVE-2013-2073	2 May 201401:59	–	debiancve
Cvelist	CVE-2013-7110	2 May 201401:00	–	cvelist

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2013-7110
github	www.github.com/transifex/transifex-client/issues/42
openwall	www.openwall.com/lists/oss-security/2013/12/13/5
openwall	www.openwall.com/lists/oss-security/2013/12/15/3
github	www.github.com/transifex/transifex-client/commit/e0d1f8b38ec1a24e2999d63420554d8393206f58
github	www.github.com/pypa/advisory-database/tree/main/vulns/transifex-client/PYSEC-2014-72.yaml
github	www.github.com/advisories/GHSA-jf99-2rj4-jxrm

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

17 May 2022 04:45Current

6.7Medium risk

Vulners AI Score6.7

CVSS24.3

EPSS0.00082

CWE-20