Lucene search
+L

8 matches found

osv
osv
added 2026/01/22 1:15 a.m.5 views

CVE-2025-27377

Altium Designer version 24.9.0 does not validate self-signed server certificates for cloud connections. An attacker capable of performing a man-in-the-middle MITM attack could exploit this issue to intercept or manipulate network traffic, potentially exposing authentication credentials or sensiti...

5.3CVSS5.8AI score0.00174EPSS
Exploits0References1
nvd
nvd
added 2026/01/22 1:15 a.m.10 views

CVE-2025-27377

Altium Designer version 24.9.0 does not validate self-signed server certificates for cloud connections. An attacker capable of performing a man-in-the-middle MITM attack could exploit this issue to intercept or manipulate network traffic, potentially exposing authentication credentials or sensiti...

5.3CVSS0.00174EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/01/22 12:16 a.m.4 views

CVE-2025-27377

Altium Designer version 24.9.0 does not validate self-signed server certificates for cloud connections. An attacker capable of performing a man-in-the-middle MITM attack could exploit this issue to intercept or manipulate network traffic, potentially exposing authentication credentials or sensiti...

5.3CVSS5.4AI score0.00174EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2026/01/22 12:16 a.m.4 views

CVE-2025-27377 Missing Validation of Self-Signed Certificates in Altium Designer Allows Man-in-the-Middle Attacks

Altium Designer version 24.9.0 does not validate self-signed server certificates for cloud connections. An attacker capable of performing a man-in-the-middle MITM attack could exploit this issue to intercept or manipulate network traffic, potentially exposing authentication credentials or sensiti...

5.3CVSS5.5AI score0.00174EPSS
Exploits0References1
cvelist
cvelist
added 2026/01/22 12:16 a.m.29 views

CVE-2025-27377 Missing Validation of Self-Signed Certificates in Altium Designer Allows Man-in-the-Middle Attacks

Altium Designer version 24.9.0 does not validate self-signed server certificates for cloud connections. An attacker capable of performing a man-in-the-middle MITM attack could exploit this issue to intercept or manipulate network traffic, potentially exposing authentication credentials or sensiti...

5.3CVSS0.00174EPSS
Exploits0References1
cve
cve
added 2026/01/22 12:16 a.m.17 views

CVE-2025-27377

CVE-2025-27377 concerns Altium Designer 24.9.0, where self-signed server certificates are not validated for cloud connections. The root cause is improper certificate validation, enabling a potential MITM attacker to intercept or manipulate network traffic and possibly expose authentication creden...

5.3CVSS5.5AI score0.00174EPSS
Exploits0References1Affected Software1
ptsecurity
ptsecurity
added 2026/01/22 12:0 a.m.19 views

PT-2026-3884

Altium Designer version 24.9.0 does not validate self-signed server certificates for cloud connections. An attacker capable of performing a man-in-the-middle MITM attack could exploit this issue to intercept or manipulate network traffic, potentially exposing authentication credentials or sensiti...

5.3CVSS5.5AI score0.00174EPSS
Exploits0References2
cvelist
cvelist
added 2021/11/05 3:39 p.m.23 views

CVE-2021-42701 AzeoTech DAQFactory

An attacker could prepare a specially crafted project file that, if opened, would attempt to connect to the cloud and trigger a man in the middle MiTM attack. This could allow an attacker to obtain credentials and take over the user’s cloud account...

5CVSS6.4AI score0.0057EPSS
Exploits0References1
Rows per page
Query Builder