Lucene search
+L

12 matches found

CVE
CVE
added 2026/07/09 9:35 a.m.18 views

CVE-2026-59692

GStreamer DTLS plugin exposes a stack buffer overflow during DTLS handshake when formatting the peer certificate Subject DN into a fixed 2048-byte stack buffer without bounds checks. A remote unauthenticated attacker can supply an oversized Subject DN to trigger the overflow, causing a crash and ...

7.5CVSS6.1AI score0.0031EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/30 12:0 a.m.8 views

PT-2026-29126

Name of the Vulnerable Software and Affected Versions Botan versions prior to 3.11.0 Description Botan is a C++ cryptography library. When processing X.509 certificate paths with DNS name constraints, a case-sensitive comparison of the Common Name CN allowed a certificate to bypass restrictions...

5.9CVSS5.9AI score0.00158EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/07/05 12:0 a.m.4 views

Bouncy Castle 信任管理问题漏洞

Bouncy Castle is a collection of APIs used in cryptography organized by Bouncy Castle. It includes APIs for the Java and C programming languages. A security vulnerability exists in Bouncy Castle For Java versions prior to 1.74, which stems from an LDAP injection vulnerability due to a failure to...

5.3CVSS6.7AI score0.00772EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2023/02/15 6:20 a.m.8 views

SUSE CVE-2004-0488

Stack-based buffer overflow in the sslutiluuencodebinary function in sslutil.c for Apache modssl, when modssl is configured to trust the issuing CA, may allow remote attackers to execute arbitrary code via a client certificate with a long subject DN...

7.5CVSS8.4AI score0.37681EPSS
Exploits0References4
OSV
OSV
added 2013/08/28 9:55 p.m.2 views

DEBIAN-CVE-2013-4111

The Python client library for Glance python-glanceclient before 0.10.0 does not properly check the preverifyok value, which prevents the server hostname from being verified with a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate and allows...

5.8CVSS6.5AI score0.00986EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2013/08/08 5:4 p.m.6 views

jakarta-commons-httpclient: missing connection hostname check against X.509 certificate name

It was found that Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows...

5.8CVSS7.2AI score0.09254EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2013/03/25 5:3 p.m.7 views

jakarta-commons-httpclient: missing connection hostname check against X.509 certificate name

It was found that Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows...

5.8CVSS7.2AI score0.09254EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2012/11/04 12:0 a.m.2 views

PT-2012-6131 · Filesanywhere · Filesanywhere

Name of the Vulnerable Software and Affected Versions: FilesAnywhere affected versions not specified Description: The issue arises from FilesAnywhere not verifying that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate. This...

7.4CVSS7.3AI score0.0062EPSS
Exploits1References3
OSV
OSV
added 2010/04/16 7:30 p.m.1 views

DEBIAN-CVE-2010-1155

Irssi before 0.8.15, when SSL is used, does not verify that the server hostname matches a domain name in the subject's Common Name CN field or a Subject Alternative Name field of the X.509 certificate, which allows man-in-the-middle attackers to spoof IRC servers via an arbitrary certificate...

6.8CVSS6.9AI score0.01562EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2009/09/02 12:0 a.m.32 views

Fedora Core 11 FEDORA-2009-8815 (neon)

The remote host is missing an update to neon announced via advisory FEDORA-2009-8815. OpenVAS Vulnerability Test $Id: fcore20098815.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-8815 neon Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft...

4.3CVSS0.08437EPSS
Exploits1
OSV
OSV
added 2009/08/03 2:30 p.m.1 views

DEBIAN-CVE-2009-2404

Heap-based buffer overflow in a regular-expression parser in Mozilla Network Security Services NSS before 3.12.3, as used in Firefox, Thunderbird, SeaMonkey, Evolution, Pidgin, and AOL Instant Messenger AIM, allows remote SSL servers to cause a denial of service application crash or possibly...

9.3CVSS6.8AI score0.04155EPSS
Exploits1References1
OSV
OSV
added 2009/07/30 7:30 p.m.2 views

DEBIAN-CVE-2009-2408

Mozilla Network Security Services NSS before 3.12.3, Firefox before 3.0.13, Thunderbird before 2.0.0.23, and SeaMonkey before 1.1.18 do not properly handle a '\0' character in a domain name in the subject's Common Name CN field of an X.509 certificate, which allows man-in-the-middle attackers to...

5.9CVSS5.8AI score0.05741EPSS
Exploits4References1
Rows per page
Query Builder