Lucene search
K

12 matches found

OSV
OSV
added 2026/06/26 10:50 p.m.3 views

GHSA-8JGF-23Q5-X7XX ex_aws_sns: Trusted-attacker `SigningCertURL` permits complete SNS signature bypass

Summary ExAws.SNS.verifymessage/1 fetches the signing certificate from the SigningCertURL field of the incoming SNS message without validating that the URL uses HTTPS or that its host is an AWS-owned SNS certificate domain. An unauthenticated attacker who can POST to any endpoint that calls...

8.7CVSS6AI score0.00226EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/06/26 10:50 p.m.7 views

ex_aws_sns: Trusted-attacker `SigningCertURL` permits complete SNS signature bypass

Summary ExAws.SNS.verifymessage/1 fetches the signing certificate from the SigningCertURL field of the incoming SNS message without validating that the URL uses HTTPS or that its host is an AWS-owned SNS certificate domain. An unauthenticated attacker who can POST to any endpoint that calls...

8.7CVSS6AI score0.00226EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/05 7:21 p.m.10 views

CVE-2026-47074

Improper Certificate Validation vulnerability in ex-aws exawssns ExAws.SNS, ExAws.SNS.PublicKeyCache modules allows Signature Spoofing by Improper Validation. This vulnerability is associated with program files lib/exaws/sns.ex, lib/exaws/sns/publickeycache.ex and program routines...

8.7CVSS5.5AI score0.00226EPSS
Exploits0References1
OSV
OSV
added 2026/05/28 9:5 a.m.16 views

EEF-CVE-2026-47074 ex_aws_sns SigningCertURL not validated in verify_message/1

Summary Improper Certificate Validation vulnerability in ex-aws exawssns ExAws.SNS, ExAws.SNS.PublicKeyCache modules allows Signature Spoofing by Improper Validation. This vulnerability is associated with program files lib/exaws/sns.ex, lib/exaws/sns/publickeycache.ex and program routines...

8.7CVSS5.8AI score0.00226EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.13 views

PT-2026-44365

Name of the Vulnerable Software and Affected Versions ex aws sns versions 2.0.1 through 2.3.4 Description Improper Certificate Validation in the ExAws.SNS and ExAws.SNS.PublicKeyCache modules allows for signature spoofing. The function verify message fetches the signing certificate from the...

8.7CVSS5.8AI score0.00226EPSS
Exploits0References10
Cvelist
Cvelist
added 2026/05/13 6:8 p.m.30 views

CVE-2026-0258 PAN-OS: Server-Side Request Forgery (SSRF) in IKEv2 Certificate URL Fetching

A server-side request forgery SSRF vulnerability in the IKEv2 implementation of Palo Alto Networks PAN-OS® software allows an unauthenticated attacker to cause the firewall to send network requests to unintended destinations or cause a denial of service DoS condition. Panorama, Cloud NGFW and...

8.3CVSS0.00317EPSS
Exploits0References1
CVE
CVE
added 2026/05/13 6:8 p.m.34 views

CVE-2026-0258

CVE-2026-0258 describes a server-side request forgery (SSRF) in the IKEv2 components of PAN-OS. An unauthenticated attacker could cause the firewall to issue network requests to unintended destinations or trigger a DoS condition. Affected scope is PAN-OS IKEv2 certificate URL fetching (per CVE re...

8.3CVSS5.8AI score0.00317EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 8:42 a.m.13 views

CVE-2022-31083

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 4.10.11 and 5.2.2, the certificate in the Parse Server Apple Game Center auth adapter not validated. As a result, authentication could potentially be bypassed by making a fake...

8.6CVSS6.6AI score0.00824EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/06/17 6:15 p.m.7 views

CVE-2022-31083 Authentication bypass in Parse Server Apple Game Center auth adapter

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 4.10.11 and 5.2.2, the certificate in the Parse Server Apple Game Center auth adapter not validated. As a result, authentication could potentially be bypassed by making a fake...

8.6CVSS8.2AI score0.00824EPSS
Exploits0References4
Cvelist
Cvelist
added 2022/06/17 6:15 p.m.46 views

CVE-2022-31083 Authentication bypass in Parse Server Apple Game Center auth adapter

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 4.10.11 and 5.2.2, the certificate in the Parse Server Apple Game Center auth adapter not validated. As a result, authentication could potentially be bypassed by making a fake...

8.6CVSS8.4AI score0.00824EPSS
Exploits0References4
Veracode
Veracode
added 2022/05/05 11:14 a.m.22 views

Authentication Bypass

parse-server is vulnerable to authentication bypass. An attacker is able to bypass the authentication because of lack of proper validation and checks for Apple certificate URL in the Apple Game Center authentication adapter, leading to application crash...

7.5CVSS3AI score0.00639EPSS
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2008/07/05 12:0 a.m.47 views

Microsoft Outlook information leak (callback)

By setting CA certificate URL field in certificate used for message signing, it's possible to force Outlook to issue HTTP request without user intervation...

0.3AI score
Exploits0References1
Rows per page
Query Builder