Lucene search
K

4 matches found

OpenVAS
OpenVAS
added 2024/09/17 12:0 a.m.15 views

Ubuntu: Security Advisory (USN-7012-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS7.5AI score0.00729EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/09/16 12:0 a.m.24 views

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS : curl vulnerability (USN-7012-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-7012-1 advisory. Hiroki Kurosawa discovered that curl incorrectly handled certain OCSP responses. This could result in bad certificates not being checked...

6.5CVSS7.2AI score0.00729EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2014/01/21 5:2 p.m.5 views

nss: CERT_VerifyCert returns SECSuccess (saying certificate is good) even for bad certificates (MFSA 2013-103)

The CERTVerifyCert function in lib/certhigh/certvfy.c in Mozilla Network Security Services NSS 3.15 before 3.15.3 provides an unexpected return value for an incompatible key-usage certificate when the CERTVerifyLog argument is valid, which might allow remote attackers to bypass intended access...

5.8CVSS6.4AI score0.02397EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2013/12/05 4:11 p.m.5 views

nss: CERT_VerifyCert returns SECSuccess (saying certificate is good) even for bad certificates (MFSA 2013-103)

The CERTVerifyCert function in lib/certhigh/certvfy.c in Mozilla Network Security Services NSS 3.15 before 3.15.3 provides an unexpected return value for an incompatible key-usage certificate when the CERTVerifyLog argument is valid, which might allow remote attackers to bypass intended access...

5.8CVSS6.4AI score0.02397EPSS
Exploits0References5
Rows per page
Query Builder