31 matches found
The vulnerability of the configuration management system and remote execution capabilities of SaltStack Salt, related to errors in the certificate validation process, allows a perpetrator to carry out a “man-in-the-middle” attack.
The vulnerability of the configuration management system and the remote execution of operations in SaltStack Salt is related to errors in the certificate validation process. Exploiting this vulnerability could allow a malicious actor to carry out a “man-in-the-middle” attack...
The vulnerability of the SupportAssist component in the network operating system SmartFabric OS10 allows a perpetrator to gain access to protected information by carrying out “man-in-the-middle” attacks.
The vulnerability of the SupportAssist component in the SmartFabric OS10 network operating system is related to errors in the certificate validation process. Exploiting this vulnerability can allow an attacker to gain access to protected information by conducting “man-in-the-middle” attacks using...
The vulnerability of TLS and SSL Mbed TLS implementations lies in errors in the certificate validation process, which allows attackers to compromise the integrity of data.
The vulnerability of TLS and SSL Mbed TLS implementations is related to the incorrect use of the revocationDate check. Exploiting this vulnerability allows a remote attacker to compromise the integrity of data...
Vulnerability of the Node.js software platform’s Relative Distinguished Name (RDN) component, which allows attackers to perform spoofing attacks
The vulnerability of the Relative Distinguished Name RDN component in the Node.js software platform is related to errors in the certificate validation process. Exploiting this vulnerability allows attackers to perform spear-phishing attacks remotely...
The vulnerability of the Windows Certificate component in Windows operating systems allows attackers to carry out spoofing attacks.
The vulnerability of the Windows Certificate component in Windows operating systems is related to errors in the certificate validation process. Exploiting this vulnerability can allow attackers to carry out spoofing attacks...
Squid 信任管理问题漏洞
Squid is a suite of proxy server and web caching server software. The software provides features such as caching the World Wide Web, filtering traffic, and proxying the Internet. Squid suffers from a trust management issue vulnerability that stems from incorrect certificate validation. An attacke...
The vulnerability of the Git-based software platform for collaborative code development on GitLab relates to errors in the certificate validation process, which allows attackers to compromise data integrity.
The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to errors in the certificate validation process. Exploiting this vulnerability allows a malicious actor to compromise the integrity of data...
The vulnerability of the Apache NetBeans application environment update system, related to errors in the certificate validation process, allows attackers to compromise the confidentiality and integrity of the protected information.
The vulnerability of the Apache NetBeans application environment update system is related to errors in the certificate validation process. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and integrity of the protected information...
The vulnerability of VMware Workspace One’s software lies in authentication process errors, which allow attackers to gain unauthorized access to protected information.
The vulnerability of VMware Workspace One software is related to errors in the certificate validation process. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...
The vulnerability of the OpenSSL library, related to errors in the certificate validation process, allows attackers to compromise the integrity of data.
The vulnerability of the OpenSSL library is related to errors in the certificate validation process. Exploiting this vulnerability could allow an attacker to compromise the integrity of data...
MGASA-2015-0246 Updated openssl package fixes security vulnerabilities
A vulnerability in the TLS protocol allows a man-in-the-middle attacker to downgrade vulnerable TLS connections using ephemeral Diffie-Hellman key exchange to 512-bit export-grade cryptography. This vulnerability is known as Logjam CVE-2015-4000. When processing an ECParameters structure OpenSSL...