2 matches found
SUSE CVE-2013-4366
http/impl/client/HttpClientBuilder.java in Apache HttpClient 4.3.x before 4.3.1 does not ensure that X509HostnameVerifier is not null, which allows attackers to have unspecified impact via vectors involving hostname verification...
The vulnerability of the Apache HttpClient client module of Apache HttpComponents (http/impl/client/HttpClientBuilder.java) allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Apache HttpClient client module of the Apache server http/impl/client/HttpClientBuilder.java is related to insufficient validation of input data X509HostnameVerifier. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity,...