Lucene search
+L

34 matches found

NVD
NVD
added 2026/06/10 2:16 p.m.12 views

CVE-2026-9758

Improper comparison with the certificates trusted list in S2OPC allows an attacker well-formed untrusted certificate to be considered trusted...

7.3CVSS0.00119EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-0768

Malware in sbrugna...

4.3CVSS6.4AI score0.00711EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2014-0769

Malware in sbrugna...

4.3CVSS6.4AI score0.00725EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2012-2476

Malware in sbrugna...

5CVSS6.4AI score0.00519EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-1742

Malware in sbrugna...

7.8CVSS6.4AI score0.01179EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/22 6:4 a.m.11 views

CVE-2012-2490

Cisco IP Communicator 8.6 allows man-in-the-middle attackers to modify the Certificate Trust List via unspecified vectors, aka Bug ID CSCtz01471...

5CVSS6.8AI score0.00519EPSS
Exploits0References1
Microsoft KB
Microsoft KB
added 2020/04/16 12:0 a.m.5 views

An automatic updater of untrusted certificates is available for Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2

An automatic updater of untrusted certificates is available for Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 INTRODUCTION An automatic updater of untrusted certificates is available for Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2. This...

6.4AI score
Exploits0
Kaspersky
Kaspersky
added 2018/11/27 12:0 a.m.58 views

KLA11376 Spoofing vulnerability in Microsoft Windows

A vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to spoof user interface. Technical details The certificates were inadvertently disclosed by the Sennheiser HeadSetup and HeadSetup Pro software. Original advisories ADV180029 Related products...

7AI score
Exploits0References3
Kaspersky
Kaspersky
added 2015/12/30 12:0 a.m.35 views

KLA10706 Potentially vulnerable Dell certificate

Microsoft updates Certificate Trust list to exclude potentially vulnerable eDellCert certificate. Via this vulnerability malicious can obtain sensitive information or bypass security restrictions. Technical details For further details about problem you can visit Dell blog entry related. And also ...

6.8AI score
Exploits0References6
myhack58
myhack58
added 2015/12/12 12:0 a.m.26 views

Xboxlive digital certificate private key is compromised, the user or the man in the middle attacks-vulnerability warning-the black bar safety net

! Microsoft confirmedXboxlive. com domain name for the SSL/TLS digital certificate private key has been compromised, by the attacker is used to attempt to launch a MiTM attack, but the private key cannot be used to sign other certificates or code, or fake other domain names. Xboxlive certificate ...

0.8AI score
Exploits0
The Hacker News
The Hacker News
added 2014/07/11 2:34 a.m.14 views

Microsoft issues Emergency Windows Update to Block Fake SSL Certificates

Today, Microsoft has issued an emergency update for almost all versions of Windows and also for Microsoft devices running Windows Phone 8 and 8.1 to secure users from attacks that abuse the latest issued rogue SSL certificates, which could be used to impersonate Google and Yahoo! websites. A week...

6.6AI score
Exploits0
MSRC
MSRC
added 2014/07/10 7:0 a.m.10 views

Security Advisory 2982792 released, Certificate Trust List updated

Today, we are updating the Certificate Trust List CTL for all supported releases of Microsoft Windows to remove the trust of mis-issued third-party digital certificates. These certificates could be used to spoof content and perform phishing or man-in-the-middle attacks against web properties. Wit...

6.7AI score
Exploits0
NVD
NVD
added 2014/02/22 9:55 p.m.18 views

CVE-2014-0737

The Cisco Unified IP Phone 7960G 9.21 and earlier allows remote attackers to bypass authentication and change trust relationships by injecting a Certificate Trust List CTL file, aka Bug ID CSCuj66795...

4.3CVSS6.9AI score0.00711EPSS
Exploits1References2
NVD
NVD
added 2014/02/22 9:55 p.m.32 views

CVE-2014-0738

The Phone Proxy component in Cisco Adaptive Security Appliance ASA Software 9.1.3 and earlier allows remote attackers to bypass authentication and change trust relationships by injecting a Certificate Trust List CTL file, aka Bug ID CSCuj66770...

4.3CVSS7AI score0.00725EPSS
Exploits0References2
Prion
Prion
added 2014/02/22 9:55 p.m.20 views

Authentication flaw

The Phone Proxy component in Cisco Adaptive Security Appliance ASA Software 9.1.3 and earlier allows remote attackers to bypass authentication and change trust relationships by injecting a Certificate Trust List CTL file, aka Bug ID CSCuj66770...

4.3CVSS7.4AI score0.00725EPSS
Exploits0References2
Prion
Prion
added 2014/02/22 9:55 p.m.13 views

Authentication flaw

The Cisco Unified IP Phone 7960G 9.21 and earlier allows remote attackers to bypass authentication and change trust relationships by injecting a Certificate Trust List CTL file, aka Bug ID CSCuj66795...

4.3CVSS7.5AI score0.00711EPSS
Exploits1References2
Cvelist
Cvelist
added 2014/02/22 9:0 p.m.19 views

CVE-2014-0737

The Cisco Unified IP Phone 7960G 9.21 and earlier allows remote attackers to bypass authentication and change trust relationships by injecting a Certificate Trust List CTL file, aka Bug ID CSCuj66795...

6.9AI score0.00711EPSS
Exploits1References2
Cisco
Cisco
added 2014/02/21 3:36 p.m.23 views

Cisco Adaptive Security Appliance Phone Proxy CTL Authentication Vulnerability

A vulnerability in the Phone Proxy function of the Cisco Adaptive Security Appliance ASA could allow an unauthenticated, remote attacker to modify the trust of the Certificate Trust List CTL of a remote IP phone. The vulnerability is due to insufficient authentication of the CTL file. An attacker...

4.3CVSS6.7AI score0.00725EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2014/02/21 12:0 a.m.8 views

PT-2014-3802 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliance ASA Software versions 9.1.3 and earlier Description: The issue allows remote attackers to bypass authentication and change trust relationships by injecting a Certificate Trust List CTL file. This could enable...

4.3CVSS6.8AI score0.00725EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/09/06 12:0 a.m.71 views

Cisco IP Communicator Certificate Trust List Manipulation

The version of Cisco IP Communicator is 8.61. Such versions are potentially affected by a data modification vulnerability. By performing a Man-in-the-Middle attack, a remote, unauthenticated attacker could replace the original Certificate Trust List with a modified one. C Tenable Network Security...

5CVSS5.4AI score0.00519EPSS
Exploits0References2
Rows per page
Query Builder