Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2021/07/12 12:0 a.m.7 views

PT-2021-20922 · Openvpn · Openvpn 3 Core Library

Name of the Vulnerable Software and Affected Versions: OpenVPN 3 Core Library versions 3.6 through 3.6.1 Description: The issue allows a man-in-the-middle attacker to bypass the certificate authentication by issuing an unrelated server certificate using the same hostname found in the...

7.4CVSS7.4AI score0.00972EPSS
Exploits0References5
OSV
OSV
added 2020/07/23 6:7 p.m.9 views

USN-4433-1 openjdk-lts vulnerabilities

Johannes Kuhn discovered that OpenJDK incorrectly handled access control contexts. An attacker could possibly use this issue to execute arbitrary code. CVE-2020-14556 It was discovered that OpenJDK incorrectly handled memory allocation when reading TIFF image files. An attacker could possibly use...

8.3CVSS6.7AI score0.05166EPSS
Exploits0References9
Cvelist
Cvelist
added 2012/08/06 5:0 p.m.26 views

CVE-2012-2500

Cisco AnyConnect Secure Mobility Client 3.0 before 3.0.08057 does not verify the certificate name in an X.509 certificate during WebLaunch of IPsec, which allows man-in-the-middle attackers to spoof servers via a crafted certificate, aka Bug ID CSCtz29470...

6.2AI score0.00463EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2012/07/02 12:0 a.m.54 views

Cisco AnyConnect Secure Mobility Client 3.0 < 3.0 MR8 Multiple Vulnerabilities

The remote host has a version of Cisco AnyConnect 3.0 MR8. Such versions are affected by the following vulnerabilities : - The HostScan VPN downloader implementation does not compare timestamps of offered software to install with currently installed software, which may allow remote attackers to...

5.8CVSS5.5AI score0.01401EPSS
Exploits0References6
Rows per page
Query Builder