Lucene search
K

7 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:22 a.m.3 views

SUSE CVE-2015-0832

Mozilla Firefox before 36.0 does not properly recognize the equivalence of domain names with and without a trailing . dot character, which allows man-in-the-middle attackers to bypass the HPKP and HSTS protection mechanisms by constructing a URL with this character and leveraging access to an X.5...

5CVSS8.6AI score0.01052EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2015-0126)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS9.8AI score0.06029EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2015/03/02 12:0 a.m.66 views

openSUSE Security Update : MozillaFirefox / mozilla-nss (openSUSE-2015-185)

MozillaFirefox, mozilla-nss were updated to fix 18 security issues. MozillaFirefox was updated to version 36.0. These security issues were fixed : - CVE-2015-0835, CVE-2015-0836: Miscellaneous memory safety hazards - CVE-2015-0832: Appended period to hostnames can bypass HPKP and HSTS protections...

7.5CVSS7.1AI score0.06029EPSS
Exploits4References20
OpenVAS
OpenVAS
added 2015/03/02 12:0 a.m.35 views

openSUSE: Security Advisory for MozillaFirefox (openSUSE-SU-2015:0404-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2015/03/01 11:4 a.m.40 views

Security update for MozillaFirefox, mozilla-nss (important)

MozillaFirefox, mozilla-nss were updated to fix 18 security issues. MozillaFirefox was updated to version 36.0. These security issues were fixed: - CVE-2015-0835, CVE-2015-0836: Miscellaneous memory safety hazards - CVE-2015-0832: Appended period to hostnames can bypass HPKP and HSTS protections ...

7.5CVSS0.4AI score0.06029EPSS
Exploits4References2
NVD
NVD
added 2015/02/25 11:59 a.m.13 views

CVE-2015-0832

Mozilla Firefox before 36.0 does not properly recognize the equivalence of domain names with and without a trailing . dot character, which allows man-in-the-middle attackers to bypass the HPKP and HSTS protection mechanisms by constructing a URL with this character and leveraging access to an X.5...

5CVSS6.2AI score0.01052EPSS
Exploits0References8
CVE
CVE
added 2015/02/25 11:0 a.m.122 views

CVE-2015-0832

CVE-2015-0832 affects Mozilla Firefox before 36.0, where the browser does not treat domain names with and without a trailing dot as equivalent, allowing a MITM by crafting a URL that bypasses HPKP/HSTS protections after gaining access to a certificate for a domain with the trailing dot. The under...

5CVSS9AI score0.01052EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder