Gitsign 信任管理问题漏洞

Gitsign is a tool developed by Gitsign’s developers that allows for signing Git commits without the need for a key. Versions of Gitsign prior to 0.16.0 contained a trust management vulnerability. This vulnerability stemmed from the fact that gitsign verify and gitsign verify-tag re-encoded the...

KAON CG3000TC和KAON CG3000T 信任管理问题漏洞

The KAON CG3000TC and KAON CG3000T are both high-performance wireless gateways from KAON Japan. The KAON CG3000TC and KAON CG3000T suffer from a trust management issue vulnerability that stems from firmware containing hard-coded plaintext credentials, which could allow an unauthenticated, remote...

Ruckus vRIoT IoT Controller 信任管理问题漏洞

Ruckus vRIoT IoT Controller is a virtual wireless IoT controller from Ruckus USA. A trust management issue vulnerability exists in Ruckus vRIoT IoT Controller versions prior to 3.0.0.0 that stems from hard-coded credentials and could lead to the execution of arbitrary code...

Ateme Flamingo XL 信任管理问题漏洞

Ateme Flamingo XL is an application from Ateme, Inc. Ateme Flamingo XL version 3.6.20 suffers from a Trust Management Issue vulnerability that stems from the use of weak default management credentials, which could lead to remote system control...

Phoenix Contact FL SWITCH 信任管理问题漏洞

The PHOENIX CONTACT FL SWITCH is an industrial grade Ethernet switch from PHOENIX CONTACT, Germany. A trust management issue vulnerability exists in Phoenix Contact FL SWITCH versions prior to 3.50, which stems from undocumented UART ports and hardcoded credentials that could result in a partial...

SAP SQL Anywhere 信任管理问题漏洞

SAP SQL Anywhere is a SAP-specific relational database management system from SAP, Germany. A trust management issue vulnerability exists in SAP SQL Anywhere, which arises from hard-coded credentials in the code, and could lead to arbitrary code execution, impacting the confidentiality integrity...

go-witness 信任管理问题漏洞

go-witness is a Golang library open-sourced by in-toto. A trust management issue vulnerability exists in go-witness version 0.8.6 and earlier, which stems from the AWS attestor not properly validating AWS EC2 instance identity documents, which could lead to the acceptance of forged identity...

ABB FLXEON 信任管理问题漏洞

ABB FLXEON is a family of building automation controllers from ABB Switzerland. ABB FLXEON 9.3.5 and earlier versions and later versions are vulnerable to a trust management issue that stems from the use of hard-coded credentials...

Dragonfly 信任管理问题漏洞

Dragonfly is an open source framework from DragonflyDB that allows dynamic processing of any content type. A trust management issue vulnerability exists in Dragonfly versions prior to 2.1.0 that stems from disabling TLS certificate validation, which could lead to man-in-the-middle attacks and...

WTW-EAGLE App 信任管理问题漏洞

WTW-EAGLE App is a mobile application from WTW that has the ability to provide risk management, insurance data access and analytics. A trust management issue vulnerability exists in the WTW-EAGLE App that stems from not properly validating server certificates, which could lead to a...

WordPress plugin BeyondCart Connector 信任管理问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A trust management issue...

FreePBX api 信任管理问题漏洞

FreePBX api is an open source plug-in for FreePBX. A trust management issue vulnerability exists in FreePBX api versions prior to 15.0.13, 16.0.2 through 16.0.14, and 17.0.1 through 17.0.2, which stems from the use of the same OAuth private key on multiple systems, which could lead to bypassing...

IBM Concert Software Trust Management Issues Vulnerabilities

IBM Concert Software is IBM's generative AI-driven automated application management and monitoring tool based on the WatsonX platform, focused on optimizing the operational efficiency and reliability of applications. IBM Concert Software has a trust management issue vulnerability that stems from...

Dreamehome app和Dreame MOVAhome app 信任管理问题漏洞

The Dreamehome app and Dreame MOVAhome app are both mobile apps from Dreame, Inc. A trust management issue vulnerability exists in the Dreamehome app and Dreame MOVAhome app, which stems from the acceptance of self-signed certificates in TLS communication and could lead to a man-in-the-middle...

Onion Site Template 信任管理问题漏洞

Onion Site Template is a self-hosted example from Vessel9817 Individual Developer. Onion Site Template suffers from a trust management issue vulnerability that stems from the inclusion of a fixed tor mirror, which could lead to a compromised website...

SIGNUM-NET FARA 信任管理问题漏洞

SIGNUM-NET FARA is a facility management software from SIGNUM-NET Poland. A trust management issue vulnerability exists in SIGNUM-NET FARA version 5.0.80.34 and prior versions, which stems from the use of hard-coded SQLite credentials that could lead to reading and manipulating local databases...

WordPress plugin Premium Age Verification Restriction for WordPress 信任管理问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A trust management issue vulnerability exis...

Siemens SICAM TOOLBOX II 信任管理问题漏洞

Siemens SICAM TOOLBOX II is an engineering software from Siemens, Germany. A trust management issue vulnerability exists in Siemens SICAM TOOLBOX II that stems from a failure to check the extended key usage attribute of a device certificate, which could be exploited by an attacker to cause a...

Comodo Internet Security Premium 信任管理问题漏洞

Comodo Internet Security Premium is a suite of computer security software from Comodo, Inc. that focuses on Internet security. A trust management issue vulnerability exists in Comodo Internet Security Premium version 12.3.4.8162, which stems from an improper certificate validation in the update...

D-Link DCS-7517 Trust Management Issues Vulnerability

D-Link DCS-7517 is a network camera from China AUO D-Link. A trust management issue vulnerability exists in the D-Link DCS-7517 version 2.02.0 and earlier, which stems from the use of hard-coded passwords. An attacker could exploit the vulnerability to cause confidentiality to be compromised...