Lucene search
K

25 matches found

Amazon
Amazon
added 2024/08/15 12:0 a.m.6 views

Low: ca-certificates

Issue Overview: Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi starting in 2021.05.30 and prior to 2024.07.4 recognized root certificates from GLOBALTRUST. Certifi 2024.07.04 removes ro...

7.5CVSS6.8AI score0.01049EPSS
Exploits0
PyPA
PyPA
added 2024/07/05 7:15 p.m.6 views

PYSEC-2024-230

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi starting in 2021.05.30 and prior to 2024.07.4 recognized root certificates from GLOBALTRUST. Certifi 2024.07.04 removes root certificates...

7.5CVSS6.8AI score0.01049EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2024/07/05 7:15 p.m.3 views

DEBIAN-CVE-2024-39689

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi starting in 2021.5.30 and prior to 2024.7.4 recognized root certificates from GLOBALTRUST. Certifi 2024.7.04 removes root certificates fro...

7.5CVSS6.5AI score0.01049EPSS
Exploits0References1
PyPA
PyPA
added 2023/08/03 7:36 p.m.5 views

PYSEC-2023-135

Certifi 2023.07.22 removes root certificates from "e-Tugra" from the root store. These are in the process of being removed from Mozilla's trust store. e-Tugra's root certificates are being removed pursuant to an investigation prompted by reporting of security issues in their systems...

9.8CVSS8.3AI score0.00468EPSS
Exploits0References4Affected Software1
SUSE CVE
SUSE CVE
added 2023/07/26 11:17 p.m.4 views

SUSE CVE-2023-37920

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted ...

7.4CVSS7.1AI score0.00468EPSS
Exploits0References3
OSV
OSV
added 2023/07/25 9:15 p.m.5 views

ALPINE-CVE-2023-37920

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted ...

9.8CVSS7AI score0.00468EPSS
Exploits0References1
OSV
OSV
added 2023/07/25 9:15 p.m.3 views

DEBIAN-CVE-2023-37920

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted ...

9.8CVSS7AI score0.00468EPSS
Exploits0References1
OSV
OSV
added 2023/07/25 9:15 p.m.3 views

UBUNTU-CVE-2023-37920

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi prior to version 2023.07.22 recognizes "e-Tugra" root certificates. e-Tugra's root certificates were subject to an investigation prompted ...

9.8CVSS6.8AI score0.00468EPSS
Exploits0References4
OSV
OSV
added 2022/12/07 10:15 p.m.3 views

DEBIAN-CVE-2022-23491

Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi 2022.12.07 removes root certificates from "TrustCor" from the root store. These are in the process of being removed from Mozilla's trust...

7.5CVSS6.5AI score0.00535EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/12/07 12:0 a.m.4 views

Certifi 数据伪造问题漏洞

Certifi is a Python SSL certificate from Certifi Open Source. A data forgery vulnerability exists in Certifi versions 2017.11.05 through 2022.12.07, which can be exploited by an attacker to remove the root certificate from the root store "TrustCor"...

7.5CVSS6.7AI score0.00535EPSS
Exploits0References4
OSV
OSV
added 2022/12/06 12:56 p.m.4 views

USN-5761-2 ca-certificates update

USN-5761-1 updated ca-certificates. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Due to security concerns, the TrustCor certificate authority has been marked as distrusted in Mozilla's root store. This update removes the...

7.5CVSS6.8AI score0.00535EPSS
Exploits0References2
OSV
OSV
added 2022/12/05 3:20 p.m.4 views

USN-5761-1 ca-certificates update

Due to security concerns, the TrustCor certificate authority has been marked as distrusted in Mozilla's root store. This update removes the TrustCor CA certificates from the ca-certificates package...

7.5CVSS6.8AI score0.00535EPSS
Exploits0References2
Snyk
Snyk
added 2022/08/01 10:21 p.m.6 views

Improper Certificate Validation

Overview std/crypto/x509 is a Go standard library package std/crypto/x509 Affected versions of this package are vulnerable to Improper Certificate Validation. Go Vulnerability Report: A Windows vulnerability allows attackers to spoof valid certificate chains when the system root store is in use.A...

8.6CVSS6.8AI score0.89436EPSS
Exploits14References3
OSV
OSV
added 2021/10/22 5:14 p.m.5 views

CLSA-2021-1634922899 Update of openssl

Always check certificates from local root store first...

5.8AI score
Exploits0References1
OSV
OSV
added 2021/10/05 2:8 p.m.8 views

CLSA-2021-1633442910 Update of openssl-static, openssl-perl, openssl-devel, openssl, openssl-devel, openssl

Always check certificates from local root store first...

5.8AI score
Exploits0References1
CloudLinux
CloudLinux
added 2021/10/05 2:8 p.m.18 views

Update of openssl-static, openssl-perl, openssl-devel, openssl, openssl-devel, openssl

Always check certificates from local root store first...

3.2AI score
Exploits0References1
CloudLinux
CloudLinux
added 2021/09/30 12:55 p.m.27 views

Update of openssl-static, openssl-perl, openssl-devel, openssl, openssl-devel, openssl

Always check certificates from local root store first...

3.2AI score
Exploits0References1
Citrix
Citrix
added 2021/07/27 12:0 a.m.10 views

How to Create and Use Client Certificates on NetScaler Appliance with Firmware 10.0

This article describes the procedure to create and use the Citrix NetScaler client certificates. Requirements NetScaler software release 10.0 NetScaler hardware appliance or a NetScaler VPX A client workstation, such as Microsoft Windows XP SP2 Background The NetScaler software consists of an SSL...

6.6AI score
Exploits0
Citrix
Citrix
added 2018/05/17 12:0 a.m.14 views

The Citrix License Server certificate is not in the Delivery Controller's trusted root store

License Server certificate not in the Delivery Controller's trusted root certificate store. This will impact Studio and Director managing and displaying information from the license server...

6.9AI score
Exploits0
OSV
OSV
added 2017/11/10 2:29 a.m.4 views

CVE-2017-9758

Savitech driver packages for Windows silently install a self-signed certificate into the Trusted Root Certification Authorities store, aka "Inaudible Subversion."...

7.4CVSS5.8AI score
Exploits0References4
Rows per page
Query Builder