PT-2026-32052

Name of the Vulnerable Software and Affected Versions Palo Alto Networks Autonomous Digital Experience Manager on Windows affected versions not specified Description A certificate validation issue exists in Palo Alto Networks Autonomous Digital Experience Manager on Windows. An unauthenticated...

The vulnerability of the Tidal component of the Alpine iLX-507 audio system allows a hacker to execute arbitrary code.

The vulnerability of the Tidal component of the Alpine iLX-507 audio system is related to errors in the certificate validation process. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

The vulnerability of the authentication method used by the Vault Enterprise and Vault Community Edition archiving platforms for corporate information allows a perpetrator to create malicious certificates.

The vulnerability of the authentication method used by the Vault Enterprise and Vault Community Edition archiving platforms for corporate information is related to errors in the certificate validation process. Exploiting this vulnerability could allow an attacker to create malicious certificates...

The vulnerability of the Root Certificate Handler component of the software solution for secure remote access to data in Palo Alto Networks’ GlobalProtect App allows a malicious actor to escalate their privileges.

The vulnerability of the Root Certificate Handler component in the software for secure remote access to data in the Palo Alto Networks GlobalProtect App is related to errors in the certificate validation process. Exploiting this vulnerability can allow attackers to increase their privileges...

The vulnerability of the software for managing Lenovo Accessories and Display Manager (LADM) and the software for managing and configuring Lenovo Display Control Center (LDCC) lies in errors in the authentication process, allowing a perpetrator to execute arbitrary code.

The vulnerabilities of the Lenovo Accessories and Display Manager LADM software for managing accessories and displays, as well as the Lenovo Display Control Center LDCC software for controlling and configuring displays, are related to errors in the certificate validation process. Exploiting these...

CVE-2024-51774

qBittorrent before 5.0.1 proceeds with use of https URLs even after certificate validation errors...

DEBIAN-CVE-2024-51774

qBittorrent before 5.0.1 proceeds with use of https URLs even after certificate validation errors...

CVE-2024-51774

qBittorrent before 5.0.1 proceeds with use of https URLs even after certificate validation errors...

The vulnerability of the C++ Botan cryptographic library, related to incorrect certificate verification, allows attackers to influence the integrity of the system.

The vulnerability of the C++ Botan cryptographic library is related to errors in the certificate validation process. Exploiting this vulnerability could allow a malicious actor to influence the integrity of the system remotely...

The vulnerability of the MongoDB database management system is related to errors in the TLS certificate validation process, which allows a perpetrator to establish unauthorized connections to the MongoDB server.

The vulnerability of the MongoDB database management system is related to errors in the TLS certificate validation process. Exploiting this vulnerability allows an attacker to establish unauthorized connections to the MongoDB server remotely...

The vulnerability in the web interface of the software for managing network infrastructure SINEC INS allows a perpetrator to enhance their privileges.

The vulnerability of the software web interface for managing SINEC INS network infrastructure is related to errors in the certificate validation process. Exploiting this vulnerability could allow an attacker, operating remotely, to enhance their privileges by intercepting requests sent to the UMC...

The vulnerability of the scanning function of SSL/TLS-protocol-based antivirus software from ESET, including ESET NOD32, ESET Internet Security, ESET Smart Security Premium, ESET Security Ultimate, ESET Endpoint Antivirus for Windows, ESET Endpoint Security for Windows, ESET Endpoint Antivirus for Linux, ESET Server Security for Windows Server (File Security for Microsoft Windows Server), ESET Mail Security for Microsoft Exchange Server, ESET Mail Security for IBM Domino, ESET Security for Microsoft SharePoint Server, ESET File Security for Microsoft Azure, and ESET Server Security for Linux, allows attackers to bypass the security measures.

The vulnerability of the scanning function of SSL/TLS-protection in ESET NOD32 antivirus software, ESET Internet Security, ESET Smart Security Premium, ESET Security Ultimate, ESET Endpoint Antivirus for Windows, ESET Endpoint Security for Windows, ESET Endpoint Antivirus for Linux, ESET Server...

The vulnerability of the TLS implementation of the RTU500 Scripting Interface for programming logic controllers from Hitachi Energy allows attackers to gain unauthorized access to protected information and perform spoofing attacks.

The vulnerability of the TLS implementation in the RTU500 Scripting Interface for programming logic controllers from Hitachi Energy relates to errors in the certificate validation process. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information a...

The vulnerability of the Security component in operating systems such as tvOS, iOS, iPadOS, watchOS, and macOS allows attackers to bypass signature checks.

The vulnerability of the Security component in operating systems such as tvOS, iOS, iPadOS, watchOS, and macOS is related to errors in the certificate validation process. Exploiting this vulnerability can allow attackers to bypass the signature verification...

The vulnerability of the Security component in iOS, watchOS, iPadOS, and macOS operating systems allows attackers to bypass digital signatures checks.

The vulnerability of the Security component in iOS, watchOS, iPadOS, and macOS is related to errors in the certificate validation process. Exploiting this vulnerability can allow attackers to bypass digital signature checks...

The vulnerability of the Python programming language’s cryptography interpreter lies in errors in the certificate validation process, which allows attackers to execute a type of “man-in-the-middle” attack.

The vulnerability of the Python programming language’s cryptography interpreter is related to errors in the certificate validation process. Exploiting this vulnerability could allow a malicious actor to carry out a “man-in-the-middle” attack...

The vulnerability of the Bouncy Castle cryptographic protection mechanism lies in errors during the certificate validation process, which allows attackers to disclose the protected information.

The vulnerability of the Bouncy Castle cryptographic protection mechanism is related to errors in the certificate validation process. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose the protected information...

The vulnerability of the X509_VERIFY_PARAM_add0_policy() function in the OpenSSL library allows a attacker to perform a man-in-the-middle attack.

The vulnerability of the X509VERIFYPARAMadd0policy function in the OpenSSL library is related to errors in the certificate validation process. Exploiting this vulnerability could allow a remote attacker to execute a “man-in-the-middle” attack...

Vulnerability of FortiOS operating systems and FortiProxy proxy servers in protecting against Internet attacks, related to errors in the certificate validation process, allowing attackers to execute “man-in-the-middle” type attacks.

The vulnerability of the FortiOS operating systems and the FortiProxy proxy server for protection against Internet attacks is related to errors in the certificate validation process. Exploiting this vulnerability allows a malicious actor to execute a “man-in-the-middle” attack remotely...

The vulnerability of the WorkSource function in Android operating systems, which allows a hacker to increase their privileges

The vulnerability of the WorkSource function in Android operating systems is related to errors in the certificate validation process. Exploiting this vulnerability can allow attackers to enhance their privileges...