Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2013-6418

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PyWBEM 0.7 and earlier uses a separate connection to validate X.509 certificates, which allows man-in-the- middle attackers to spoof a peer via an arbitrary...

5.8CVSS5.7AI score0.01772EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.12 views

RHEL 6 : pywbem (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - pywbem: failure to check certificate hostname CVE-2013-6444 - PyWBEM 0.7 and earlier uses a separate...

5.8CVSS7.7AI score0.01772EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.13 views

RHEL 7 : pywbem (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - pywbem: failure to check certificate hostname CVE-2013-6444 - PyWBEM 0.7 and earlier uses a separate...

5.8CVSS7.4AI score0.01772EPSS
Exploits0References2
Rosalinux
Rosalinux
added 2021/07/02 6:3 p.m.19 views

Advisory ROSA-SA-2021-1958

Software: pywbem 0.7.0 OS: Cobalt 7.9 CVE-ID: CVE-2013-6418 CVE-Crit: HIGH CVE-DESC: PyWBEM 0.7 and earlier versions use a separate connection to validate X.509 certificates, which allows "attacker-in-the-middle" attackers to trick a peer node with an arbitrary certificate. CVE-STATUS: default...

5.8CVSS6.5AI score0.01772EPSS
Exploits0
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.11 views

SUSE: Security Advisory (SUSE-SU-2014:0580-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS6.8AI score0.01772EPSS
Exploits0References2
CVE
CVE
added 2014/05/05 5:0 p.m.48 views

CVE-2013-6418

CVE-2013-6418 affects PyWBEM 0.7 and earlier, where certificate validation occurs over a separate connection, enabling MITM spoofing of peers via arbitrary X.509 certificates. Impact is partial confidentiality/integrity risk as described in linked advisories; exploitation details are not provided...

5.8CVSS6.4AI score0.01772EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/04/30 12:0 a.m.17 views

SuSE 11.3 Security Update : python-pywbem (SAT Patch Number 9079)

This update fixes a TOCTOU vulnerability during certificate validation. CVE-2013-6418 has been assigned to this issue. This update also introduces a new dependency on python-m2crypto. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

5.8CVSS5.2AI score0.01772EPSS
Exploits0References4
Rows per page
Query Builder