Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:50 p.m.5 views

CVE-2021-43766

Odyssey passes to server unencrypted bytes from man-in-the-middle When Odyssey is configured to use certificate Common Name for client authentication, a man-in-the-middle attacker can inject arbitrary SQL queries when a connection is first established, despite the use of SSL certificate...

8.1CVSS7.5AI score0.01901EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.33 views

EulerOS 2.0 SP8 : postgresql-10.5 (EulerOS-SA-2023-1346)

According to the versions of the postgresql-10.5 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Odyssey passes to server unencrypted bytes from man-in-the-middle When Odyssey is configured to use certificate Common Name for client...

8.1CVSS7.2AI score0.00464EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2022/10/13 12:40 a.m.14 views

CVE-2021-43766 affecting package postgresql 12.8-1

CVE-2021-43766 affecting package postgresql 12.8-1. An upgraded version of the package is available that resolves this issue...

8.1CVSS7.4AI score0.00464EPSS
Exploits0
CVE
CVE
added 2022/08/25 5:27 p.m.90 views

CVE-2021-43766

CVE-2021-43766 describes an issue where, when Odyssey is configured to use certificate Common Name for client authentication, a man-in-the-middle can inject arbitrary SQL queries on the initial connection, despite SSL certificate verification and encryption. The risk is evidenced by the relation ...

8.1CVSS8.2AI score0.00464EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder