Lucene search
K

6 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.3 views

Ubuntu 22.04 LTS : Snowflake vulnerabilities (USN-7966-1)

The remote Ubuntu 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7966-1 advisory. It was discovered that Pion DTLS, vendored in Snowflake, did not impose a limit on the amount of data that was buffered during the handshake. An attacker...

7.5CVSS5.8AI score0.0183EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 10:45 p.m.5 views

CVE-2022-29222

Pion DTLS is a Go implementation of Datagram Transport Layer Security. Prior to version 2.1.5, a DTLS Client could provide a Certificate that it doesn't posses the private key for and Pion DTLS wouldn't reject it. This issue affects users that are using Client certificates only. The connection...

7.5CVSS6.7AI score0.00702EPSS
Exploits0References1
Circl
Circl
added 2022/05/21 7:47 a.m.7 views

CVE-2022-29222

creationtimestamp| type| source ---|---|--- 2022-05-21 07:47:54+00:00| seen| https://t.me/cibsecurity/43136...

7.5CVSS7.3AI score0.00702EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/05/21 12:0 a.m.4 views

CVE-2022-29222 Improper Certificate Validation in Pion DTLS

Pion DTLS is a Go implementation of Datagram Transport Layer Security. Prior to version 2.1.5, a DTLS Client could provide a Certificate that it doesn't posses the private key for and Pion DTLS wouldn't reject it. This issue affects users that are using Client certificates only. The connection...

5.9CVSS7.5AI score0.00702EPSS
Exploits0References3
Cvelist
Cvelist
added 2022/05/21 12:0 a.m.21 views

CVE-2022-29222 Improper Certificate Validation in Pion DTLS

Pion DTLS is a Go implementation of Datagram Transport Layer Security. Prior to version 2.1.5, a DTLS Client could provide a Certificate that it doesn't posses the private key for and Pion DTLS wouldn't reject it. This issue affects users that are using Client certificates only. The connection...

5.9CVSS7.7AI score0.00702EPSS
Exploits0References3
CVE
CVE
added 2022/05/21 12:0 a.m.78 views

CVE-2022-29222

CVE-2022-29222 affects Pion DTLS (Go) prior to v2.1.5. A DTLS server could accept a client certificate without the client proving possession of the corresponding private key, making the provided certificate untrustworthy while the connection remains otherwise secure. Publicly documented details c...

7.5CVSS6.4AI score0.00702EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder