Lucene search
K

12 matches found

OSV
OSV
added 2026/05/13 1:1 p.m.5 views

ALPINE-CVE-2026-4873

A vulnerability exists where a connection requiring TLS incorrectly reuses an existing unencrypted connection from the same connection pool. If an initial transfer is made in clear-text via IMAP, SMTP, or POP3, a subsequent request to that same host bypasses the TLS requirement and instead transm...

5.9CVSS5.4AI score0.00329EPSS
Exploits1References1
NVD
NVD
added 2026/05/13 1:1 p.m.9 views

CVE-2026-4873

A vulnerability exists where a connection requiring TLS incorrectly reuses an existing unencrypted connection from the same connection pool. If an initial transfer is made in clear-text via IMAP, SMTP, or POP3, a subsequent request to that same host bypasses the TLS requirement and instead transm...

5.9CVSS0.00329EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2023/06/05 11:46 a.m.6 views

curl: HSTS bypass via IDN

A vulnerability was found in curl. The issue can occur when curl's HSTS check is bypassed to trick it to keep using HTTP. Using its HSTS support, curl can be instructed to use HTTPS instead of an insecure clear-text HTTP step even when providing HTTP in the URL. Suppose the hostname in the given...

7.5CVSS6.7AI score0.1654EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/02/23 12:0 a.m.3 views

curl 安全漏洞

curl is a tool for transferring data from or to a server. A security vulnerability exists in versions prior to curl v7.88.0, which stems from a sensitive information clear-text transfer vulnerability that can be exploited by an attacker to cause HSTS functionality to fail by requesting multiple...

6.5CVSS6.3AI score0.00861EPSS
Exploits0References9
CNNVD
CNNVD
added 2023/02/23 12:0 a.m.2 views

curl 安全漏洞

curl is a tool for transferring data from or to a server. A security vulnerability exists in versions prior to curl v7.88.0, which stems from the presence of a sensitive information clear-text transfer vulnerability that can be exploited by an attacker to cause HSTS functionality to fail by...

9.1CVSS7AI score0.00858EPSS
Exploits1References8
OSV
OSV
added 2022/12/23 3:15 p.m.2 views

DEBIAN-CVE-2022-43551

A vulnerability exists in curl 7.87.0 HSTS check that could be bypassed to trick it to keep using HTTP. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. However, the HSTS mechanism could be bypasse...

7.5CVSS6.5AI score0.1654EPSS
Exploits1References1
OSV
OSV
added 2022/12/21 12:0 a.m.0 views

UBUNTU-CVE-2022-43551

A vulnerability exists in curl 7.87.0 HSTS check that could be bypassed to trick it to keep using HTTP. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL. However, the HSTS mechanism could be bypasse...

7.5CVSS6.8AI score0.1654EPSS
Exploits1References4
CNVD
CNVD
added 2021/03/01 12:0 a.m.9 views

Synology DiskStation Manager Sensitive Information Plaintext Transfer Vulnerability

Synology DiskStation Manager DSM is an operating system for use on Network Storage Servers NAS from Synology Inc. of Taiwan, China. This operating system manages information such as data, files, photos, music, and more. A sensitive information clear text transfer vulnerability exists in synorelay...

8.3CVSS6.2AI score0.00669EPSS
Exploits1References1
CNVD
CNVD
added 2021/03/01 12:0 a.m.5 views

Synology DiskStation Manager Sensitive Information Plaintext Transfer Vulnerability (CNVD-2021-13674)

Synology DiskStation Manager DSM is an operating system for use on Network Storage Servers NAS from Synology Inc. of Taiwan, China. This operating system manages information such as data, files, photos, music, and more. A sensitive information clear text transfer vulnerability exists in...

9CVSS6.2AI score0.00691EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/02/26 12:0 a.m.7 views

Synology DiskStation Manager 安全漏洞

Synology DiskStation Manager DSM is an operating system for use on Network Storage Servers NAS from Synology Inc. of Taiwan, China. This operating system manages information such as data, files, photos, music, and more. A sensitive information clear text transfer vulnerability exists in...

9CVSS7.2AI score0.00691EPSS
Exploits1References5
CNNVD
CNNVD
added 2021/02/26 12:0 a.m.8 views

Synology DiskStation Manager 安全漏洞

Synology DiskStation Manager DSM is an operating system for use on Network Storage Servers NAS from Synology Inc. of Taiwan, China. This operating system manages information such as data, files, photos, music, and more. A sensitive information clear text transfer vulnerability exists in synorelay...

8.7CVSS7.3AI score0.00602EPSS
Exploits1References4
Cvelist
Cvelist
added 2019/12/12 7:8 p.m.15 views

CVE-2019-13947

A vulnerability has been identified in Control Center Server CCS All versions V1.5.0. The user configuration menu in the web interface of the Control Center Server CCS transfers user passwords in clear to the client browser. An attacker with administrative privileges for the web interface could b...

4.9CVSS4.8AI score0.00857EPSS
Exploits0References2
Rows per page
Query Builder