Lucene search
K

74 matches found

Tenable Nessus
Tenable Nessus
added 2014/08/27 12:0 a.m.35 views

Fedora 20 : jakarta-commons-httpclient-3.1-15.fc20 (2014-9581)

Security fix for CVE-2014-3577, CVE-2012-6153 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

5.8CVSS6.2AI score0.09254EPSS
Exploits1References6
OSV
OSV
added 2014/08/25 8:44 a.m.7 views

MGASA-2014-0348 Updated jakarta-commons-httpclient and httpcomponents-client packages fix security vulnerabilities

Updated jakarta-commons-httpclient and httpcomponents-client packages fix security vulnerabilities: The Jakarta Commons HttpClient component may be susceptible to a 'Man in the Middle Attack' due to a flaw in the default hostname verification during SSL/TLS when a specially crafted server side...

5.8CVSS6.3AI score0.09149EPSS
Exploits1References4
OSV
OSV
added 2014/08/25 8:44 a.m.7 views

MGASA-2014-0347 Updated jakarta-commons-httpclient and httpcomponents-client packages fix security vulnerability

Updated jakarta-commons-httpclient and httpcomponents-client packages fix security vulnerability: The Jakarta Commons HttpClient and Apache httpcomponents HttpClient components may be susceptible to a 'Man in the Middle Attack' due to a flaw in the default hostname verification during SSL/TLS whe...

5.8CVSS6AI score0.09149EPSS
Exploits1References4
Mageia
Mageia
added 2014/08/25 8:44 a.m.110 views

Updated jakarta-commons-httpclient and httpcomponents-client packages fix security vulnerability

Updated jakarta-commons-httpclient and httpcomponents-client packages fix security vulnerability: The Jakarta Commons HttpClient and Apache httpcomponents HttpClient components may be susceptible to a 'Man in the Middle Attack' due to a flaw in the default hostname verification during SSL/TLS whe...

4.3CVSS2AI score0.05844EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.40 views

openSUSE Security Update : jakarta-commons-httpclient (openSUSE-SU-2013:0622-1)

jakarta-commons-httpclient was updated to enhance the fix of bnc803332 / CVE-2012-5783 - also check for subjectAltNames in the certificate. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update...

5.8CVSS6.8AI score0.09254EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2013/09/04 12:0 a.m.33 views

Amazon Linux AMI : jakarta-commons-httpclient (ALAS-2013-169)

The Jakarta Commons HttpClient component did not verify that the server hostname matched the domain name in the subject's Common Name CN or subjectAltName field in X.509 certificates. This could allow a man-in-the-middle attacker to spoof an SSL server if they had a certificate that was valid for...

5.8CVSS6.8AI score0.09254EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.26 views

Oracle Linux 5 / 6 : jakarta-commons-httpclient (ELSA-2013-0270)

The remote Oracle Linux 5 / 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2013-0270 advisory. 1:3.1-0.7 - Add missing connection hostname check against X.509 certificate name - Resolves: CVE-2012-5783 Tenable has extracted the preceding description...

5.8CVSS6.9AI score0.09254EPSS
Exploits0References2
OSV
OSV
added 2013/07/06 2:11 p.m.6 views

MGASA-2013-0199 Updated jakarta-commons-httpclient package fixes security vulnerability

The Jakarta Commons HttpClient component did not verify that the server hostname matched the domain name in the subject's Common Name CN or subjectAltName field in X.509 certificates. This could allow a man-in-the-middle attacker to spoof an SSL server if they had a certificate that was valid for...

5.8CVSS9.1AI score0.09254EPSS
Exploits0References3
Mageia
Mageia
added 2013/07/06 2:11 p.m.42 views

Updated jakarta-commons-httpclient package fixes security vulnerability

The Jakarta Commons HttpClient component did not verify that the server hostname matched the domain name in the subject's Common Name CN or subjectAltName field in X.509 certificates. This could allow a man-in-the-middle attacker to spoof an SSL server if they had a certificate that was valid for...

5.8CVSS1.8AI score0.09254EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2013/07/01 3:10 p.m.41 views

Important: Red Hat Security Advisory: Red Hat JBoss BRMS 5.3.1 update

Red Hat JBoss BRMS 5.3.1 roll up patch 2, which fixes multiple security issues and various bugs, is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores,...

6.4CVSS6.6AI score0.12098EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2013/04/22 9:17 p.m.10 views

Moderate: Red Hat Security Advisory: JBoss Web Framework Kit 2.2.0 update

JBoss Web Framework Kit 2.2.0, which fixes two security issues, various bugs, and adds enhancements is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores,...

5.8CVSS6.5AI score0.3038EPSS
Exploits2References5
RedHat Linux
RedHat Linux
added 2013/03/25 5:5 p.m.43 views

Moderate: Red Hat Security Advisory: jakarta-commons-httpclient security update

An updated jakarta-commons-httpclient package for JBoss Enterprise Web Platform 5.2.0 which fixes one security issue is now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scori...

5.8CVSS6.6AI score0.09254EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2013/03/25 5:4 p.m.8 views

Moderate: Red Hat Security Advisory: jakarta-commons-httpclient security update

An update for JBoss Enterprise Web Platform 5.2.0 which fixes one security issue is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a...

5.8CVSS6.6AI score0.09254EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2013/03/25 5:4 p.m.48 views

Moderate: Red Hat Security Advisory: jakarta-commons-httpclient security update

An updated jakarta-commons-httpclient package for JBoss Enterprise Application Platform 5.2.0 which fixes one security issue is now available for Red Hat Enterprise Linux 4, 5, and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerabili...

5.8CVSS6.6AI score0.09254EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2013/03/25 5:3 p.m.39 views

Moderate: Red Hat Security Advisory: jakarta-commons-httpclient security update

An update for JBoss Enterprise Application Platform 5.2.0 which fixes one security issue is now available from the Red Hat Customer Portal. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which giv...

5.8CVSS6.6AI score0.09254EPSS
Exploits0References3
Amazon
Amazon
added 2013/03/14 12:0 a.m.50 views

Medium: jakarta-commons-httpclient

Issue Overview: The Jakarta Commons HttpClient component did not verify that the server hostname matched the domain name in the subject's Common Name CN or subjectAltName field in X.509 certificates. This could allow a man-in-the-middle attacker to spoof an SSL server if they had a certificate th...

5.8CVSS7.5AI score0.09254EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2013/02/22 12:0 a.m.24 views

CentOS Update for jakarta-commons-httpclient CESA-2013:0270 centos5

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.8CVSS6.3AI score0.09254EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/02/22 12:0 a.m.22 views

RedHat Update for jakarta-commons-httpclient RHSA-2013:0270-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

5.8CVSS7.5AI score0.09254EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2013/02/22 12:0 a.m.30 views

RedHat Update for jakarta-commons-httpclient RHSA-2013:0270-01

Check for the Version of jakarta-commons-httpclient OpenVAS Vulnerability Test RedHat Update for jakarta-commons-httpclient RHSA-2013:0270-01 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

5.8CVSS7.5AI score0.09254EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/02/22 12:0 a.m.29 views

CentOS Update for jakarta-commons-httpclient CESA-2013:0270 centos5

Check for the Version of jakarta-commons-httpclient OpenVAS Vulnerability Test CentOS Update for jakarta-commons-httpclient CESA-2013:0270 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...

5.8CVSS7.5AI score0.09254EPSS
Exploits0References2
Rows per page
Query Builder