Lucene search
+L

4 matches found

NVD
NVD
added 2023/03/21 8:15 p.m.46 views

CVE-2023-0391

MGT-COMMERCE CloudPanel ships with a static SSL certificate to encrypt communications to the administrative interface, shared across every installation of CloudPanel. This behavior was observed in version 2.2.0. There has been no indication from the vendor this has been addressed in version 2.2.1...

8.1CVSS8AI score0.00599EPSS
Exploits1References2
CVE
CVE
added 2023/03/21 7:25 p.m.66 views

CVE-2023-0391

CVE-2023-0391 affects MGT-COMMERCE CloudPanel. The issue: CloudPanel ships with a static SSL certificate (and private key) shared across all installations, observed in version 2.2.0. This enables fingerprintable certificates and allows an attacker with access to capture or decrypt HTTPS traffic t...

8.1CVSS8AI score0.00599EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2023/03/21 7:25 p.m.48 views

CVE-2023-0391 MGT-COMMERCE CloudPanel Shared Certificate

MGT-COMMERCE CloudPanel ships with a static SSL certificate to encrypt communications to the administrative interface, shared across every installation of CloudPanel. This behavior was observed in version 2.2.0. There has been no indication from the vendor this has been addressed in version 2.2.1...

8.2AI score0.00599EPSS
Exploits1References2
OSV
OSV
added 2023/03/21 7:25 p.m.29 views

CVE-2023-0391 MGT-COMMERCE CloudPanel Shared Certificate

MGT-COMMERCE CloudPanel ships with a static SSL certificate to encrypt communications to the administrative interface, shared across every installation of CloudPanel. This behavior was observed in version 2.2.0. There has been no indication from the vendor this has been addressed in version 2.2.1...

8.1CVSS7AI score0.00599EPSS
Exploits1References4
Rows per page
Query Builder