Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Vulnrichment
Vulnrichmentadded 2026/04/27 1:10 p.m.0 views

CVE-2026-41081 Apache Storm Client: Anonymous principal assigned on TLS client certificate verification failure

Improper Handling of TLS Client Authentication Failure Leading to Anonymous Principal Assignment in Apache Storm Versions Affected: up to 2.8.7 Description: When TLS transport is enabled in Apache Storm without requiring client certificate authentication the default configuration, the...

5.1AI score0.00286EPSS
Exploits0References1
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2014-7113

Malware in sbrugna...

5.9CVSS5.9AI score0.00642EPSS
Exploits0References3
Citrix
Citrixadded 2021/07/29 12:0 a.m.5 views

Endpoint Management | Issues deploying Credential policy with Discretionary CA - PKIs

After trying to deploy a credential policy, the device Assigned Policies section shows the following error from the Failed Column: Path: Dashboard Manage Devices %Device% Edit Assigned Policies - Type: Credentials - Comment: Command preparation failed:...

7.1AI score
Exploits0
CNVD
CNVDadded 2017/05/19 12:0 a.m.1 views

Life Before Us Yo app for iOS Authentication Vulnerability

Life Before Us Yo app for iOS is an iOS based social mobile application developed by Yo Inc. An authentication vulnerability exists in version 2.5.8 of the Life Before Us Yo app for iOS, which stems from the program failing to validate an X.509 certificate on the server side of an SSL server. The...

5.9CVSS6.8AI score0.00486EPSS
Exploits0References1
Mozilla
Mozillaadded 2015/01/13 12:0 a.m.69 views

Delegated OCSP responder certificates failure with id-pkix-ocsp-nocheck extension — Mozilla

Brian Smith reported that delegated Online Certificate Status Protocol OCSP responder certificates fail to recognize the id-pkix-ocsp-nocheck extension. If this extension is present in a delegated OCSP response signing certificate, it will be discarded if it is signed by such a certificate. This...

4.3CVSS8.7AI score0.01568EPSS
Exploits0References2Affected Software2
NVD
NVDadded 2014/10/19 10:55 a.m.12 views

CVE-2014-7424

The Quran Abu Bakr AshShatiri Free aka com.wQuranAbuBakrFREE application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2014/04/18 10:14 p.m.3 views

CVE-2014-2014

imapsync before 1.584, when running with the --tls option, attempts a cleartext login when a certificate verification failure occurs, which allows remote attackers to obtain credentials by sniffing the network...

4.3CVSS5.6AI score0.01537EPSS
Exploits0References9
Positive Technologies
Positive Technologiesadded 2014/01/15 12:0 a.m.2 views

PT-2014-4430 · Imapsync · Imapsync

Name of the Vulnerable Software and Affected Versions: imapsync versions prior to 1.584 Description: The issue allows remote attackers to obtain credentials by sniffing the network when a certificate verification failure occurs. This happens because imapsync attempts a cleartext login when runnin...

10CVSS7.7AI score0.28862EPSS
Exploits2References26
Rows per page
Query Builder