Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2014/10/12 12:0 a.m.30 views

Amazon Linux AMI : subversion (ALAS-2014-413)

The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before 1.8.10 does not properly handle wildcards in the Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof servers via a crafted certificate. C Tenabl...

4CVSS7.6AI score0.05581EPSS
Exploits0References2
Amazon
Amazon
added 2014/09/17 12:0 a.m.49 views

Medium: subversion

Issue Overview: The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before 1.8.10 does not properly handle wildcards in the Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof servers via a crafted...

4CVSS8.1AI score0.05581EPSS
Exploits0
Mageia
Mageia
added 2014/08/21 9:36 a.m.41 views

Updated subversion packages fix security vulnerabilities

Updated subversion packages fix security vulnerabilities: Ben Reser discovered that Subversion did not correctly validate SSL certificates containing wildcards. A remote attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communicatio...

4CVSS7.9AI score0.07495EPSS
Exploits0References6
OSV
OSV
added 2014/08/19 6:55 p.m.7 views

CVE-2014-3522

The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before 1.8.10 does not properly handle wildcards in the Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof servers via a crafted certificate...

4CVSS6AI score0.05581EPSS
Exploits0References17
CVE
CVE
added 2014/08/19 6:0 p.m.92 views

CVE-2014-3522

The CVE-2014-3522 vulnerability affects Subversion’s Serf RA layer, where wildcards in X.509 CN/subjectAltName are not properly validated, enabling MITM certificate spoofing. Affected: Subversion Serf-based TLS for versions 1.4.0–1.7.x before 1.7.18 and 1.8.x before 1.8.10. Impact: potential disc...

4CVSS8.3AI score0.05581EPSS
Exploits0References15Affected Software1
Rows per page
Query Builder