Lucene search
K

6 matches found

OpenVAS
OpenVAS
added 2014/12/15 12:0 a.m.26 views

Fedora Update for smack FEDORA-2014-16383

Check the version of smack SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868607";...

6.8CVSS9.5AI score0.0123EPSS
Exploits0References2
NVD
NVD
added 2014/10/25 9:55 p.m.22 views

CVE-2014-5075

The Ignite Realtime Smack XMPP API 4.x before 4.0.2, and 3.x and 2.x when a custom SSLContext is used, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof...

6.8CVSS6.3AI score0.00924EPSS
Exploits0References4
CVE
CVE
added 2014/10/25 9:0 p.m.68 views

CVE-2014-5075

CVE-2014-5075 : The Ignite Realtime Smack XMPP API (4.x before 4.0.2; 3.x and 2.x when a custom SSLContext is used) does not verify that the SSL certificate’s CN or SAN matches the server hostname, enabling man-in-the-middle with an arbitrary valid certificate. This is a hostname verification fla...

6.8CVSS8.9AI score0.00924EPSS
Exploits0References4Affected Software1
OpenVAS
OpenVAS
added 2014/09/03 12:0 a.m.25 views

Fedora Update for smack FEDORA-2014-9694

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS9.6AI score0.00924EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/09/03 12:0 a.m.32 views

Fedora 20 : smack-3.2.2-5.fc20 (2014-9694)

fix for CVE-2014-5075 rhbz1127277 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300...

6.8CVSS7.5AI score0.00924EPSS
Exploits0References3
securityvulns
securityvulns
added 2014/08/11 12:0 a.m.100 views

CVE-2014-5075 MitM Vulnerability in the Smack XMPP Library for Java

CVE-2014-5075 MitM Vulnerability in the Smack XMPP Library for Java =================================================================== Smack http://www.igniterealtime.org/projects/smack/ is an Open Source XMPP Jabber client library for instant messaging and presence written in Java. Smack prior ...

6.8CVSS0.8AI score0.0123EPSS
Exploits0
Rows per page
Query Builder