CVE-2019-12496

An issue was discovered in Hybrid Group Gobot before 1.13.0. The mqtt subsystem skips verification of root CA certificates by default...

EUVD-2011-5140

Malware in sbrugna...

EUVD-2014-7554

Malware in sbrugna...

EUVD-2018-1050

Malware in sbrugna...

CVE-2024-47258

CVE-2024-47258 affects 2N Access Commander up to v2.1 (and earlier). The issue is a default-settings MITM risk caused by not validating TLS certificates of 2N edge devices. Mitigation details from connected docs show that 2N released v3.3 of Access Commander with Certificate Fingerprint Verificat...

Amazon Linux 2023 : python3-requests, python3-requests+security, python3-requests+socks (ALAS2023-2024-782)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-782 advisory. Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests Session, if the first request is made with verify=False to disable cert verification, all subsequent requests to the...

MGASA-2015-0212 Updated async-http-client packages fix security vulnerabilities

Updated async-http-client packages fix security vulnerabilities: It was found that async-http-client would disable SSL/TLS certificate verification under certain conditions, for example if HTTPS communication also uses client certificates. This can be exploited by a Man-in-the-middle MITM attack...