Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Tenable Nessus
Tenable Nessusadded 2026/01/16 12:0 a.m.2 views

MiracleLinux 3 : nss-3.16.1-2.AXS3 (AXSA:2014-538:03)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-538:03 advisory. Description : Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and serve...

10CVSS7.9AI score0.02889EPSS
Exploits5References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2017-0112

Malware in sbrugna...

5.9CVSS5.7AI score0.0034EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2025/09/03 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2015-2674

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Restkit allows man-in-the-middle attackers to spoof TLS servers by leveraging use of the ssl.wrapsocket function in Python with the default CERTNONE value for t...

5.9CVSS5.9AI score0.0034EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/22 7:8 a.m.3 views

CVE-2019-1318

A spoofing vulnerability exists when Transport Layer Security TLS accesses non- Extended Master Secret EMS sessions, aka 'Microsoft Windows Transport Layer Security Spoofing Vulnerability'...

5.9CVSS6.7AI score0.02802EPSS
Exploits0References1
CNNVD
CNNVDadded 2022/04/02 12:0 a.m.2 views

WeeChat 信任管理问题漏洞

WeeChat is a scalable live chat client application. A security vulnerability exists in WeeChat versions 3.2 through 3.4 that stems from not properly validating the server's TLS certificate, which could allow an attacker to spoof a TLS chat server with an arbitrary certificate after certain GnuTLS...

4.8CVSS5.4AI score0.00135EPSS
Exploits1References3
NVD
NVDadded 2017/11/17 2:29 a.m.13 views

CVE-2017-1000209

The Java WebSocket client nv-websocket-client does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL/TLS servers via an arbitrary valid certificate...

5.9CVSS5.6AI score0.00121EPSS
Exploits0References1
Prion
Prionadded 2017/11/17 2:29 a.m.12 views

Design/Logic Flaw

The Java WebSocket client nv-websocket-client does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL/TLS servers via an arbitrary valid certificate...

4.3CVSS5.6AI score0.00121EPSS
Exploits0References1Affected Software1
OSV
OSVadded 2017/08/09 6:29 p.m.4 views

PYSEC-2017-69

Restkit allows man-in-the-middle attackers to spoof TLS servers by leveraging use of the ssl.wrapsocket function in Python with the default CERTNONE value for the certreqs argument...

5.9CVSS5.9AI score0.0034EPSS
Exploits0References3
Rows per page
Query Builder