Lucene search
+L

4 matches found

osv
osv
added 2026/01/07 9:39 a.m.7 views

CVE-2025-68637 Apache Uniffle: Insecure SSL Configuration in Uniffle HTTP Client

The Uniffle HTTP client is configured to trust all SSL certificates and disables hostname verification by default. This insecure configuration exposes all REST API communication between the Uniffle CLI/client and the Uniffle Coordinator service to potential Man-in-the-Middle MITM attacks. This...

9.1CVSS5.9AI score0.0022EPSS
Exploits0References4
cnnvd
cnnvd
added 2022/02/03 12:0 a.m.4 views

Apache Gobblin 信任管理问题漏洞

Apache Gobblin is a distributed data integration framework from the Apache Foundation USA. Used to simplify common aspects of big data integration, Apache Gobblin is vulnerable to a trust management issue that stems from Apache Gobblin trusting all certificates used for LDAP connections in...

9.8CVSS5.5AI score0.01302EPSS
Exploits0References3
osv
osv
added 2021/10/18 9:15 a.m.1 views

DEBIAN-CVE-2021-41611

An issue was discovered in Squid 5.0.6 through 5.1.x before 5.2. When validating an origin server or peer certificate, Squid may incorrectly classify certain certificates as trusted. This problem allows a remote server to obtain security trust well improperly. This indication of trust may be pass...

7.5CVSS7AI score0.02854EPSS
Exploits0References1
oraclelinux
oraclelinux
added 2019/11/22 12:0 a.m.79 views

kernel security update

4.18.0-147.0.31.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-147.0.31 - drm drm/i915/cmdparser: Fix jump whitelist clearing Dave...

7.8CVSS1.6AI score0.00668EPSS
Exploits0
Rows per page
Query Builder