Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.15 views

Mageia: Security Advisory (MGASA-2014-0449)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.7AI score0.01979EPSS
Exploits0References6
NVD
NVD
added 2014/10/15 2:55 p.m.13 views

CVE-2014-2576

plugins/rssyl/feed.c in Claws Mail before 3.10.0 disables the CURLOPTSSLVERIFYHOST check for CN or SAN host name fields, which makes it easier for remote attackers to spoof servers and conduct man-in-the-middle MITM attacks...

6.8CVSS6.4AI score0.01979EPSS
Exploits0References5
OSV
OSV
added 2014/10/15 2:55 p.m.2 views

DEBIAN-CVE-2014-2576

plugins/rssyl/feed.c in Claws Mail before 3.10.0 disables the CURLOPTSSLVERIFYHOST check for CN or SAN host name fields, which makes it easier for remote attackers to spoof servers and conduct man-in-the-middle MITM attacks...

6.8CVSS6.8AI score0.01979EPSS
Exploits0References1
CVE
CVE
added 2014/10/15 2:0 p.m.51 views

CVE-2014-2576

This CVE concerns Claws Mail’s RSSYL integration: plugins/rssyl/feed.c in Claws Mail before 3.10.0 disables the CURLOPT_SSL_VERIFYHOST check for CN/SAN host names, enabling easier server spoofing and MITM attacks. The vulnerability affects the SSL/TLS hostname verification path and can impact con...

6.8CVSS6.5AI score0.01979EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2014/10/15 2:0 p.m.20 views

CVE-2014-2576

plugins/rssyl/feed.c in Claws Mail before 3.10.0 disables the CURLOPTSSLVERIFYHOST check for CN or SAN host name fields, which makes it easier for remote attackers to spoof servers and conduct man-in-the-middle MITM attacks...

6.4AI score0.01979EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/10/15 12:0 a.m.16 views

openSUSE Security Update : claws-mail (openSUSE-SU-2014:1291-1)

Update to version 3.10.1bnc870858 : + Add an account preference to allow automatically accepting unknown and changed SSL certificates, if they're valid that is, if the root CA is trusted by the distro. + RFE 3196, 'When changing quicksearch Search Type, set focus to search input box'. + PGP/Core...

6.8CVSS5.5AI score0.01979EPSS
Exploits0References2
Rows per page
Query Builder