Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:43 a.m.5 views

CVE-2024-37015

An issue was discovered in Ada Web Server 20.0. When configured to use SSL which is not the default setting, the SSL/TLS used to establish connections to external services is done without proper hostname validation. This is exploitable by man-in-the-middle attackers...

7.4CVSS5.9AI score0.00368EPSS
Exploits0References1
NVD
NVD
added 2024/08/13 5:15 p.m.10 views

CVE-2024-37015

An issue was discovered in Ada Web Server 20.0. When configured to use SSL which is not the default setting, the SSL/TLS used to establish connections to external services is done without proper hostname validation. This is exploitable by man-in-the-middle attackers...

7.4CVSS0.00368EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2024/08/13 5:15 p.m.12 views

CVE-2024-37015

An issue was discovered in Ada Web Server 20.0. When configured to use SSL which is not the default setting, the SSL/TLS used to establish connections to external services is done without proper hostname validation. This is exploitable by man-in-the-middle attackers...

7.4CVSS5.9AI score0.00368EPSS
Exploits0References3
CVE
CVE
added 2024/08/13 12:0 a.m.50 views

CVE-2024-37015

CVE-2024-37015 affects Ada Web Server 20.0. When SSL/TLS is enabled (not the default), the outbound SSL handshake validates hostnames incorrectly, exposing connections to MITM attackers. The public descriptions consistently report a hostname validation flaw during external-service connections. No...

7.4CVSS6.8AI score0.00368EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/08/13 12:0 a.m.17 views

CVE-2024-37015

An issue was discovered in Ada Web Server 20.0. When configured to use SSL which is not the default setting, the SSL/TLS used to establish connections to external services is done without proper hostname validation. This is exploitable by man-in-the-middle attackers...

0.00368EPSS
Exploits0References2
Rows per page
Query Builder