CVE-2026-8367

aria2c accepts a server certificate with incorrect Extended Key Usage EKU. If the attackers compromise a certificate with the associated private key issued for a different purpose, they may be able to reuse it for TLS server authentication...

Malware Apps Signed with Compromised Android Platform Certificates

By Deeba Ahmed Hackers are using compromised platform certificates to sign Android malware apps. This is a post from HackRead.com Read the original post: Malware Apps Signed with Compromised Android Platform Certificates...

PT-2020-14827 · Philips · Patient Information Center Ix +2

Name of the Vulnerable Software and Affected Versions: Patient Information Center iX PICiX versions C.02 and C.03 PerformanceBridge Focal Point version A.01 IntelliVue patient monitors MX100, MX400-MX550, MX750, MX850 IntelliVue X3 versions N and prior Description: The software does not check or...

Certificate trust vulnerability in Websense Content Gateway

SUMMARY Websense Content Gateway proxy explicitly trusts compromised certificate authorities Affected versions: Content Gateway 7.8.x Not affected: Content Gateway 7.7.x, 8.0 DESCRIPTION Websense Content Gateway is a filtering web proxy and content inspection application based on a modified...

Google Researchers Propose New Plan to Shore Up CA System

The security industry has no shortage of hard problems to solve, but the one that’s getting the most attention right now is finding a way to improve, or ideally, replace, the CA infrastructure. The latest in what has become a series of recent proposals to help shore up the certificate authority...

Diginotar Keeping Tor Project In The Dark On Fraudulent Certificates

A co-founder of The Tor Project says his organization is being kept in the dark about the status of a dozen fraudulent SSL certificates issued in its name by a compromised root server operated by Diginotar. The bogus certificates could be used to carry out man in the middle attacks, or trick...

Fedora 14 : nss-3.12.9-9.fc14 (2011-4244)

Update to NSS3.12.9WITHCKBI182RTM nss security update for compromised certificates see: https://bugzilla.mozilla.org/showbug.cgi?id=642815 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

Fedora 15 : nss-3.12.9-14.fc15 (2011-4117)

Update to NSS3.12.9WITHCKBI182RTM nss security update for compromised certificates see: https://bugzilla.mozilla.org/showbug.cgi?id=642395 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to...

CVE-2000-0889

Two Sun security certificates have been compromised, which could allow attackers to insert malicious code such as applets and make it appear that it is signed by Sun...