Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

RustSec
RustSecadded 2026/03/20 12:0 p.m.4 views

CRLs not considered authoritative by Distribution Point due to faulty matching logic

If a certificate had more than one distributionPoint, then only the first distributionPoint would be considered against each CRL's IssuingDistributionPoint distributionPoint, and then the certificate's subsequent distributionPoints would be ignored. The impact was that correctly provided CRLs wou...

5.8AI score
Exploits0Affected Software1
OSV
OSVadded 2023/08/03 3:15 a.m.2 views

CVE-2023-34196

In the Keyfactor EJBCA before 8.0.0, the RA web certificate distribution servlet /ejbca/ra/cert allows partial denial of service due to an authentication issue. In configurations using OAuth, disclosure of CA certificates attributes and public keys to unauthenticated or less privileged users may...

8.2CVSS5.8AI score0.00101EPSS
Exploits0References2
NVD
NVDadded 2023/08/03 3:15 a.m.9 views

CVE-2023-34196

In the Keyfactor EJBCA before 8.0.0, the RA web certificate distribution servlet /ejbca/ra/cert allows partial denial of service due to an authentication issue. In configurations using OAuth, disclosure of CA certificates attributes and public keys to unauthenticated or less privileged users may...

8.2CVSS8.1AI score0.00101EPSS
Exploits0References2
Cvelist
Cvelistadded 2023/08/03 12:0 a.m.15 views

CVE-2023-34196

In the Keyfactor EJBCA before 8.0.0, the RA web certificate distribution servlet /ejbca/ra/cert allows partial denial of service due to an authentication issue. In configurations using OAuth, disclosure of CA certificates attributes and public keys to unauthenticated or less privileged users may...

8.2AI score0.00101EPSS
Exploits0References2
OSV
OSVadded 2023/07/11 6:15 p.m.0 views

CVE-2023-35326

Windows CDP User Components Information Disclosure Vulnerability...

5.5CVSS7.3AI score0.00121EPSS
Exploits0References1
OSV
OSVadded 2022/10/03 7:18 p.m.1 views

USN-5651-2 strongswan vulnerability

USN-5651-1 fixed a vulnerability in strongSwan. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: Lahav Schlesinger discovered that strongSwan incorrectly handled certain OCSP URIs and and CRL distribution points CDP in certificate...

7.5CVSS7.3AI score0.00222EPSS
Exploits0References2
CNVD
CNVDadded 2015/04/26 12:0 a.m.1 views

GnuTLS 'gnutls_x509_ext_import_crl_dist_points()' double release vulnerability

GnuTLS is a set of secure communication libraries for implementing SSL, TLS and DTLS protocols. A double-release vulnerability exists in the GnuTLS 'gnutlsx509extimportcrldistpoints' function, which could be exploited by an attacker to submit an ad-hoc request to cause a denial of service, or...

7.5CVSS7.6AI score0.01394EPSS
Exploits0References1
Rows per page
Query Builder