CVE-2026-24933

The API communication component fails to validate the SSL/TLS certificate when sending HTTPS requests to the server. An improper certificates validation vulnerability allows an unauthenticated remote attacker can perform a Man-in-the-Middle MitM attack to intercept the cleartext communication,...

CVE-2023-33757

A lack of SSL certificate validation in Splicecom iPCS iOS App v1.3.4, iPCS2 iOS App v2.8 and before, and iPCS Android App v1.8.5 and before allows attackers to eavesdrop on communications via a man-in-the-middle attack...

Audible has an unspecified vulnerability

Audible is an online playback application for audiobooks from the American company Audible. A security vulnerability exists in versions 2.34.0 and earlier of Audible, based on the Android platform, which stems from the program's failure to validate SSL credentials against Adobe SDKs. An attacker...

SSL Certificate Not Validated Vulnerability in OnStar IOS Client

OnStar iOS client is a smart driving system. An SSL certificate not verified vulnerability exists in AnjiStar IOS client. Since the AngelStar IOS client uses SSL HTTPS communication with the server, the security processing method is to do the verification of the server certificate before the...

PT-2015-3734 · Foreman · Foreman

Name of the Vulnerable Software and Affected Versions: Foreman versions prior to 1.5.4 Foreman versions 1.6.x prior to 1.6.2 Description: The issue allows remote attackers to bypass intended authentication and execute arbitrary API requests via a request without a certificate, due to the failure ...