Lucene search
K

535 matches found

OSV
OSV
added 2026/02/24 4:8 p.m.4 views

CVE-2026-27586 Caddy's mTLS client authentication silently fails open when CA certificate file is missing or malformed

Caddy is an extensible server platform that uses TLS by default. Prior to version 2.11.1, two swallowed errors in ClientAuthentication.provision cause mTLS client certificate authentication to silently fail open when a CA certificate file is missing, unreadable, or malformed. The server starts...

9.3CVSS5.6AI score0.00267EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/24 12:0 a.m.8 views

Caddy 安全漏洞

Caddy is an open-source, cross-platform HTTP/Web server developed by the Caddy company. Versions of Caddy prior to 2.11.1 contained security vulnerabilities. These vulnerabilities were caused by two ignored errors in the ClientAuthentication.provision function, which led to a silent failure in mT...

9.3CVSS5.8AI score0.00267EPSS
Exploits1References3
OSV
OSV
added 2026/02/23 6:23 p.m.8 views

GO-2026-4530 Traefik affected by TLS ClientAuth Bypass on HTTP/3 in github.com/traefik/traefik

Traefik affected by TLS ClientAuth Bypass on HTTP/3 in github.com/traefik/traefik...

5.4AI score
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/02/20 9:14 p.m.11 views

Traefik affected by TLS ClientAuth Bypass on HTTP/3

Summary There is a potential vulnerability in Traefik managing HTTP/3 connections. More details in the CVE-2025-68121. Patches - https://github.com/traefik/traefik/releases/tag/v2.11.37 - https://github.com/traefik/traefik/releases/tag/v3.6.8 Workarounds No workaround For more information If you...

10CVSS5.7AI score0.00765EPSS
Exploits1References2Affected Software3
Tenable Nessus
Tenable Nessus
added 2026/02/18 12:0 a.m.7 views

Apache Tomcat 10.1.0.M1 < 10.1.50 multiple vulnerabilities

The version of Tomcat installed on the remote host is prior to 10.1.50. It is, therefore, affected by multiple vulnerabilities as referenced in the fixedinapachetomcat10.1.50security-10 advisory. - Improper Input Validation vulnerability. This issue affects Apache Tomcat: from 11.0.0-M1 through...

9.1CVSS7AI score0.00494EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/02/17 6:48 p.m.7 views

CVE-2025-66614

Improper Input Validation vulnerability. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.14, from 10.1.0-M1 through 10.1.49, from 9.0.0-M1 through 9.0.112. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Older EOL...

5.5AI score0.00235EPSS
Exploits0References2Affected Software1
Rosalinux
Rosalinux
added 2026/02/16 7:27 a.m.8 views

Advisory ROSA-SA-2026-3152

Software: libssh 0.9.6 OS: ROSA Virtualization 3.1 unaffected versions = libssh-0.9.6-16.rv31 affected versions libssh-0.9.6-16.rv31 CVE-ID: CVE-2025-5318 BDU-ID: 2025-09008 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the sftphandle function of the LibSSH library involves reading data outside ...

8.8CVSS7.7AI score0.93305EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2026/02/12 12:0 a.m.6 views

MiracleLinux 9 : keylime-7.12.1-11.el9_7.4 (AXSA:2026-165:01)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-165:01 advisory. keylime: Keylime: Authentication bypass allows unauthorized administrative operations due to missing client-side TLS authentication CVE-2026-1709 Tenable has...

9.8CVSS5.9AI score0.05431EPSS
Exploits0References2
OSV
OSV
added 2026/02/09 12:0 a.m.6 views

ALSA-2026:2225 Critical: keylime security update

Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. Security Fixes: keylime: Keylime: Authentication bypass allows unauthorized administrative operations due to missing client-side TLS authentication CVE-2026-1709 For more details about the...

9.8CVSS5.7AI score0.05431EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/09 12:0 a.m.5 views

RHEL 9 : keylime (RHSA-2026:2224)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2224 advisory. Keylime is a TPM based highly scalable remote boot attestation and runtime integrity measurement solution. Security Fixes: keylime: Keylime:...

9.8CVSS5.9AI score0.05431EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/02/06 7:13 p.m.31 views

CVE-2026-1709 Keylime: keylime: authentication bypass allows unauthorized administrative operations due to missing client-side tls authentication

A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security TLS authentication. This authentication bypass vulnerability allows unauthenticated clients with network access to perform administrative operations, including listing...

9.4CVSS0.05431EPSS
Exploits0References5
OSV
OSV
added 2026/02/06 7:13 p.m.5 views

CVE-2026-1709 Keylime: keylime: authentication bypass allows unauthorized administrative operations due to missing client-side tls authentication

A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transport Layer Security TLS authentication. This authentication bypass vulnerability allows unauthenticated clients with network access to perform administrative operations, including listing...

9.4CVSS5.9AI score0.05431EPSS
Exploits0References9
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.10 views

Keylime 安全漏洞

Keylime is an open-source scalable trust system developed using TPM technology. Versions of Keylime 7.12.0 and earlier contain security vulnerabilities. These vulnerabilities stem from the lack of enforcement of client-side TLS authentication, which may allow unverified clients to execute...

9.8CVSS5.9AI score0.05431EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.5 views

PT-2026-6781

Name of the Vulnerable Software and Affected Versions Keylime versions 7.12.0 and later Description A flaw exists in Keylime where the registrar does not enforce client-side Transport Layer Security TLS authentication. This allows unauthenticated clients with network access to perform...

9.8CVSS5.4AI score0.05431EPSS
Exploits0References44
CNNVD
CNNVD
added 2026/01/20 12:0 a.m.7 views

Milner ImageDirector Capture security vulnerability

Milner ImageDirector Capture is a document collection and digital asset management software developed by the American company Milner. Versions of Milner ImageDirector Capture from 7.0.9 to 7.6.3.25808 contained security vulnerabilities. These vulnerabilities were due to insufficient credential...

8.5CVSS5.8AI score0.00162EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.8 views

MiracleLinux 8 : java-11-openjdk-11.0.21.0.9-2.el8 (AXSA:2023-6545:24)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6545:24 advisory. OpenJDK: certificate path validation issue during client authentication 8309966 CVE-2023-22081 Tenable has extracted the preceding description block directly...

5.3CVSS8AI score0.014EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : java-17-openjdk-17.0.9.0.9-2.el8 (AXSA:2023-6546:18)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6546:18 advisory. OpenJDK: memory corruption issue on x8664 with AVX-512 8317121 CVE-2023-22025 OpenJDK: certificate path validation issue during client authenticatio...

5.3CVSS8.2AI score0.014EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 9 : java-21-openjdk-21.0.1.0.12-2.el9.ML.1 (AXSA:2023-7024:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-7024:01 advisory. OpenJDK: memory corruption issue on x8664 with AVX-512 8317121 CVE-2023-22025 OpenJDK: certificate path validation issue during client authenticatio...

5.3CVSS6.8AI score0.014EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.7 views

MiracleLinux 7 : java-11-openjdk-11.0.21.0.9-1.el7 (AXSA:2023-6509:20)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6509:20 advisory. OpenJDK: certificate path validation issue during client authentication 8309966 CVE-2023-22081 Tenable has extracted the preceding description block directly...

5.3CVSS6.6AI score0.014EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 7 : nss-3.28.4-12.el7 (AXSA:2017-2308:05)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-2308:05 advisory. A use-after-free flaw was found in the TLS 1.2 implementation in the NSS library when client authentication was used. A malicious client could use this flaw ...

7.5CVSS8.4AI score0.03153EPSS
Exploits0References2
Rows per page
Query Builder