ROOT-APP-PYPI-CVE-2023-37920 CVE-2023-37920 in rootio-certifi - Patched by Root

Root has patched CVE-2023-37920 in the rootio-certifi package for Root:PyPI. Multiple fixed versions available...

ROOT-APP-PYPI-CVE-2022-23491 CVE-2022-23491 in rootio-certifi - Patched by Root

Root has patched CVE-2022-23491 in the rootio-certifi package for Root:PyPI. Multiple fixed versions available...

ROOT-APP-PYPI-CVE-2024-39689 CVE-2024-39689 in rootio-certifi - Patched by Root

Root has patched CVE-2024-39689 in the rootio-certifi package for Root:PyPI. Multiple fixed versions available...

Astra Linux - уязвимость в ca-certificates

Certifi is a curated collection of Root Certificates designed to validate the reliability of SSL certificates and verify the identity of TLS hosts. On December 7, 2022, Certifi removed Root Certificates from “TrustCor” from the root store. These certificates are currently being removed from...

OESA-2026-2145 ca-certificates security update

This package contains the set of CA certificates chosen by the Mozilla Foundation for use with the Internet PKI. Security Fixes: Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts. Certifi starting ...

MiracleLinux 8 : fence-agents-4.2.1-121.el8_9.2 (AXSA:2024-7416:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7416:01 advisory. python-certifi: Removal of e-Tugra root certificate CVE-2023-37920 python-urllib3: Cookie request header isn't stripped during cross-origin redirect...

November 11, 2025—KB5068906 (Monthly Rollup)

November 11, 2025—KB5068906 Monthly Rollup Windows Secure Boot certificate expiration Important: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. This might affect the ability of certain personal and business devices to boot securely if not updated in...

TencentOS Server 4: python-certifi (TSSA-2024:0273)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0273 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

TencentOS Server 3: ca-certificates bug fix and enhancement update (Low) (TSSA-2024:0591)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0591 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

Certifi Vulnerable to Insufficient Verification of Data Authenticity via GlobalTrust Root Certificate

Certifi contains an insufficient verification of data authenticity vulnerability. The withdrawal of the GLOBALTRUST root certificate has been performed. This could result in users experiencing compliance issues. Products Not Affected Brocade Fabric OS VEX Justification: Componentnotpresent Brocad...

EUVD-2023-0052

Malicious code in bioql PyPI...

Security Bulletin: Vulnerability in certifi, flask, idna, urllib3 and axios might affect IBM Storage Defender Sentinel Anomaly Scan Engine.

Summary IBM Storage Defender Sentinel Anomaly Scan Engine can be affected by vulnerabilities in certifi, flask, idna, urllib3 and axios. Vulnerabilities include allowing an attacker to cause a denial of service, obtain sensitive information and gain access to launch further attacks on the systems...

Security Bulletin: IBM Storage Ceph is vulnerable to Insufficient Verification of Data Authenticity in Certifi (CVE-2022-23491)

Summary Certifi is used by IBM Storage Ceph for SSL Certificate verification. CVE-2022-23491 This bulletin identifies the steps to take to address the vulnerability in Ceph. Vulnerability Details CVEID:CVE-2022-23491 DESCRIPTION: Certifi is a curated collection of Root Certificates for validating...

NewStart CGSL MAIN 7.02 : python-certifi Multiple Vulnerabilities (NS-SA-2025-0144)

The remote NewStart CGSL host, running version MAIN 7.02, has python-certifi packages installed that are affected by multiple vulnerabilities: - Certifi is a curated collection of Root Certificates for validating the trustworthiness of SSL certificates while verifying the identity of TLS hosts...

python-certifi: untrusted root certificates

A flaw was found in python-certifi. Untrusted certificates from TrustCor have been found in the root certificates store...

NewStart CGSL MAIN 7.02 : python-certifi Vulnerability (NS-SA-2025-0070)

The remote NewStart CGSL host, running version MAIN 7.02, has python-certifi packages installed that are affected by a vulnerability: - In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix a race for an ODP MR which leads to CQE with error This patch addresses a race...

Alibaba Cloud Linux 3 : 0175: fence-agents (ALINUX3-SA-2024:0175)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0175 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-37920: Certifi is a curated...

Security Bulletin: Vulnerability in certifi affects IBM Cloud Pak for Data System 1.0(CPDS 1.0)[CVE-2023-37920]

Summary The certifi package is used by IBM Cloud Pak for Data System 1.0. IBM Cloud Pak for Data System 1.0 has addressed the applicable CVE CVE-2023-37920 Vulnerability Details CVEID:CVE-2023-37920 DESCRIPTION: An unspecified error with the removal of e-Tugra root certificate in Certifi has an...

Security Bulletin: Vulnerability in certifi affects IBM Cloud Pak for Data System 1.0(CPDS 1.0)[CVE-2024-39689].

Summary The certifi package is used by IBM Cloud Pak for Data System 1.0. IBM Cloud Pak for Data System 1.0 has addressed the applicable CVE CVE-2024-39689. Vulnerability Details CVEID:CVE-2024-39689 DESCRIPTION: Certifi is a curated collection of Root Certificates for validating the...

Security Bulletin: Vulnerability in certifi affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0) [CVE-2024-39689]

Summary The certifi package is used by IBM Cloud Pak for Data System 2.0 . IBM Cloud Pak for Data System 2.0 has addressed the applicable CVE CVE-2024-39689 Vulnerability Details CVEID:CVE-2024-39689 DESCRIPTION: Certifi is a curated collection of Root Certificates for validating the...