Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-29191

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00247EPSS
Exploits3References3
RedhatCVE
RedhatCVE
added 2025/09/17 12:49 a.m.10 views

CVE-2025-50944

An issue was discovered in the method push.lite.avtech.com.MySSLSocketFactoryNew.checkServerTrusted in AVTECH EagleEyes 2.0.0. The custom X509TrustManager used in checkServerTrusted only checks the certificate's expiration date, skipping proper TLS chain validation...

8.8CVSS7AI score0.00247EPSS
Exploits3References1
Cvelist
Cvelist
added 2025/09/15 12:0 a.m.8 views

CVE-2025-50944

An issue was discovered in the method push.lite.avtech.com.MySSLSocketFactoryNew.checkServerTrusted in AVTECH EagleEyes 2.0.0. The custom X509TrustManager used in checkServerTrusted only checks the certificate's expiration date, skipping proper TLS chain validation...

0.00247EPSS
Exploits3References2
CVE
CVE
added 2025/09/15 12:0 a.m.21 views

CVE-2025-50944

CVE-2025-50944 affects AVTECH EagleEyes 2.0.0. The vulnerability is in push.lite.avtech.com.MySSLSocketFactoryNew.checkServerTrusted where a custom X509TrustManager only checks certificate expiration date and does not perform proper TLS chain validation, enabling potential MITM or improper trust ...

8.8CVSS6.6AI score0.00247EPSS
Exploits3References2Affected Software1
Citrix
Citrix
added 2020/01/09 12:0 a.m.7 views

Secure Hub 10.5 : Enrollment fails with error : "Can't enroll device- WorxHome cannot enroll device because it failed to establish a secure connection with server"

Using an older Secure Hub version confirmed on 10.5, 10.6.0, enrollment fails right after enrollment URL without being able to get to authentication screen with the following: Logs will show the following: 05-03 12:12:29.406 10851 10869 D "SecureHub": "DETAIL...

7.3AI score
Exploits0
Cvelist
Cvelist
added 2005/03/10 5:0 a.m.13 views

CVE-2004-1756

BEA WebLogic Server and WebLogic Express 8.1 SP2 and earlier, and 7.0 SP4 and earlier, when using 2-way SSL with a custom trust manager, may accept a certificate chain even if the trust manager rejects it, which allows remote attackers to spoof other users or servers...

6.6AI score0.01241EPSS
Exploits0References6
CERT
CERT
added 2004/04/22 12:0 a.m.19 views

BEA WebLogic Server fails to properly validate certificate chains

Overview There is a vulnerability in BEA WebLogic Server in which certificate chains rejected by the custom trust manager could still be accepted by the server. Description BEA Systems describes WebLogic Server as "an industrial-strength application infrastructure for developing, integrating,...

6.8AI score
Exploits0References4
NVD
NVD
added 2004/04/13 4:0 a.m.12 views

CVE-2004-1756

BEA WebLogic Server and WebLogic Express 8.1 SP2 and earlier, and 7.0 SP4 and earlier, when using 2-way SSL with a custom trust manager, may accept a certificate chain even if the trust manager rejects it, which allows remote attackers to spoof other users or servers...

5CVSS6.6AI score0.01241EPSS
Exploits0References6
Rows per page
Query Builder