Lucene search
K

10 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/10 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-42765

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: When a partial-chain certificate verification is enabled together with OCSP response checking for the whole chain, a NULL dereference will happen...

7.5CVSS5.6AI score0.00419EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.12 views

PT-2026-43713

Name of the Vulnerable Software and Affected Versions Erlang OTP versions 27.0 through 27.3.4.11 Erlang OTP versions prior to 28.5.0.1 Erlang OTP versions prior to 29.0.1 public key versions 1.16 through 1.17.1.2 public key versions prior to 1.20.3.1 public key versions prior to 1.21.1 Descriptio...

6.3CVSS5.8AI score0.00316EPSS
Exploits0References33
Vulnrichment
Vulnrichment
added 2026/04/09 7:36 p.m.6 views

CVE-2026-34500 Apache Tomcat: OCSP checks sometimes soft-fail with FFM even when soft-fail is disabled

CLIENTCERT authentication does not fail as expected for some scenarios when soft fail is disabled and FFM is used in Apache Tomcat. This issue affects Apache Tomcat: from 11.0.0-M14 through 11.0.20, from 10.1.22 through 10.1.53, from 9.0.92 through 9.0.116. Users are recommended to upgrade to...

5.8AI score0.00469EPSS
Exploits0References1
CVE
CVE
added 2026/04/09 7:20 p.m.116 views

CVE-2026-29145

CVE-2026-29145 describes an authentication bypass in Apache Tomcat mutual TLS (CLIENT_CERT) when OCSP soft-fail is disabled. Affected are Tomcat 11.0.0-M1–11.0.18, 10.1.0-M7–10.1.52, and 9.0.83–9.0.115, plus Tomcat Native 1.1.23–1.1.34, 1.2.0–1.2.39, 1.3.0–1.3.6, and 2.0.0–2.0.13. With OCSP failu...

9.1CVSS5.8AI score0.00715EPSS
Exploits1References2Affected Software2
Apache Tomcat
Apache Tomcat
added 2026/04/02 12:0 a.m.8 views

Fixed in Apache Tomcat 10.1.54

Moderate: OCSP checks sometimes soft-fail with FFM even when soft-fail is disabled CVE-2026-34500 CLIENTCERT authentication does not fail as expected for some scenarios when soft fail is disabled and FFM is used. This was fixed with commit 29b56a56. This issue was reported to the Tomcat security...

7.5CVSS5.9AI score0.15831EPSS
Exploits6Affected Software1
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.5 views

TheGreenBow VPN 安全漏洞

TheGreenBow VPN is a VPN client software from the French company TheGreenBow. A security vulnerability exists in TheGreenBow VPN versions 7.5 and 7.6 that stems from incorrect OCSP certificate validation and could lead to the creation of insecure VPN tunnels...

8.2CVSS6.6AI score0.00259EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/02/06 5:1 p.m.5 views

Mozilla: Revocation status of S/Mime signature certificates was not checked

The Mozilla Foundation Security Advisory describes this flaw as: Certificate OCSP revocation status was not checked when verifying S/Mime signatures. Mail signed with a revoked certificate would be displayed as having a valid signature. Thunderbird versions from 68 to 102.7.0 were affected by thi...

6.5CVSS7.3AI score0.00372EPSS
Exploits0References5
CNNVD
CNNVD
added 2020/12/09 12:0 a.m.6 views

HAXX libcurl 信任管理问题漏洞

Haxx libcurl is an open source client-side URL transport library from the Swedish company Haxx. It supports protocols such as FTP, SFTP, TFTP and HTTP. Haxx libcurl suffers from a trust management issue vulnerability that can be exploited by an attacker to act as a man-in-the-middle by performing...

7.5CVSS6.7AI score0.09917EPSS
Exploits2References71
OSV
OSV
added 2018/01/31 2:29 p.m.5 views

UBUNTU-CVE-2017-15698

When parsing the AIA-Extension field of a client certificate, Apache Tomcat Native Connector 1.2.0 to 1.2.14 and 1.1.23 to 1.1.34 did not correctly handle fields longer than 127 bytes. The result of the parsing error was to skip the OCSP check. It was therefore possible for client certificates th...

5.9CVSS6.9AI score0.03594EPSS
Exploits0References5
OSV
OSV
added 2018/01/31 2:29 p.m.3 views

DEBIAN-CVE-2017-15698

When parsing the AIA-Extension field of a client certificate, Apache Tomcat Native Connector 1.2.0 to 1.2.14 and 1.1.23 to 1.1.34 did not correctly handle fields longer than 127 bytes. The result of the parsing error was to skip the OCSP check. It was therefore possible for client certificates th...

5.9CVSS6.2AI score0.03594EPSS
Exploits0References1
Rows per page
Query Builder