PT-2026-31027

Name of the Vulnerable Software and Affected Versions Botan versions prior to 3.11.1 Description The Botan cryptography library contains a flaw in the Certificate Store::certificate known function. This function incorrectly identifies certificates, returning true if any certificate in the store h...

PT-2025-50536

Name of the Vulnerable Software and Affected Versions Aqara Hub M2 version 4.3.6 0027 Aqara Hub M3 version 4.3.6 0025 Aqara Camera Hub G3 version 4.1.9 0027 Description Aqara Hub devices do not properly validate server certificates during TLS connections used for discovery services and CoAP gatew...

Siemens SIMATIC S7-1500 Improper Validation of Certificate with Host Mismatch (CVE-2024-2466)

libcurl did not check the server certificate of TLS connections done to a host specified as an IP address, when built to use mbedTLS. libcurl would wrongly avoid using the set hostname function when the specified hostname was given as an IP address, therefore completely skipping the certificate...

EUVD-2020-28175

Malware in sbrugna...

EUVD-2020-30254

Malware in sbrugna...

Dell Unity Storage - "Unable to validate the specified certificate (Error Code: 0x1000100)"

Challenge When attempting to add a Dell Unity Storage Appliance that has been upgraded to firmware version 5.5 to Veeam Backup & Replication or operate backups to such storage, the following error occurs: Unable to validate the specified certificate Error Code: 0x1000100 Cause An investigation by...

FreeBSD : Mozilla -- redirection to insecure site (f02e3c59-116c-11f0-8b2c-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the f02e3c59-116c-11f0-8b2c-b42e991fc52e advisory. [email protected] reports: When using Alt-Svc, ALPN did not properly validate certificates when the...

qBittorrent 安全漏洞

qBittorrent is a cross-platform lightweight BitTorrent client from qBittorrent open source. A security vulnerability exists in qBittorrent versions prior to 5.0.1 that stems from a certificate validation error...

Dell Secure Connect Gateway Trust Management Issue Vulnerability

The Dell Secure Connect Gateway Dell SCG is a secure connectivity gateway from Dell, USA. A trust management issue vulnerability exists in Dell Secure Connect Gateway SCG version 5.24.00.14, which stems from a certificate validation vulnerability that contains an error and can be exploited by a...

Advisory ROSA-SA-2024-2372

Software: openldap 2.4.46 OS: ROSA Virtualization 2.1 packageevrstring: openldap-2.4.46-10.el8.src.rpm CVE-ID: CVE-2020-15719 BDU-ID: None CVE-Crit: MEDIUM CVE-DESC.: libldap in some third-party OpenLDAP packages has a certificate validation error when the third-party package asserts support for...

IBM QRadar Suite Certificate Validation Error Vulnerability

IBM QRadar Suite is an integrated security information and event management SIEM solution from International Business Machines IBM that monitors and analyzes network activity in an organization to detect potential security threats. A certificate validation error vulnerability exists in IBM QRadar...

IBM QRadar Suite 安全漏洞

IBM QRadar Suite is an integrated security information and event management SIEM solution from International Business Machines IBM that monitors and analyzes network activity in an organization to detect potential security threats. A certificate validation error vulnerability exists in IBM QRadar...

You do not have permission to create/update the database “” on Server “” during CVAD site setup

Studio UI Error You do not have permission to create/update the database “DATABASE” on server “SQLSERVER\InstanceName, Port”. Provide credentials for an account with that permission during site setup for Always-On SQL Server Windows Event ID 36884 The certificate received from the remote server...

Citrix FAS - Incorrect username and password

Incorrect username and password FAS After launching desktop when users tries to log on. No error on the certificates, no error in "Application" and "System" in the FAS server. VDA event logs Windows logs Security and looking for audit failure at the same time as the login failure: 0xC000006A| use...

PT-2023-2005 · Hitachi · Hitachi Ops Center Analyzer +1

Name of the Vulnerable Software and Affected Versions: Hitachi Infrastructure Analytics Advisor versions 2.0.0-00 through 4.4.0-00 Hitachi Ops Center Analyzer versions 10.0.0-00 through 10.9.0-00 Description: The issue is related to improper certificate validation, which allows a Man in the Middl...

Botan has an unspecified vulnerability

Botan is a library of cryptographic algorithms written in C++. It supports a variety of algorithms such as AES, DES, SHA-1, RSA, DSA and Diffie-Hellman. A security vulnerability exists in Botan versions 1.11.34 and later up to 2.19.3, which stems from a certificate validation error and can be...

IBM Sterling Secure Proxy Trust Management Issue Vulnerability

IBM Sterling Secure Proxy is an application proxy used by International Business Machines Corporation IBM to secure the transfer of files in an organization's unprotected zone DMZ.IBM Sterling Secure Proxy version 6.0.3 and IBM Secure External Authentication Server version 6.0.3 contain a trust...

Google Android 信任管理问题漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from a trust management issue vulnerability that stems from a certificate validation error in A-GPS. A remote attacker can exploit this vulnerability to perform MitM attacks...

Insecure Certificate Validation

wp-cli/wp-cli uses insecure certificate validation. The vulnerability exists due to an improper error handling in HTTPS requests management...

Elecom ELECOM WRC-300FEBK-S 信任管理问题漏洞

The ELECOM WRC-300FEBK-S is a network camera for the home from Elecom Japan. A certificate validation error vulnerability exists in the ELECOM WRC-300FEBK-S, which can be exploited by an attacker to alter the communication response and execute arbitrary commands on the product...