5 matches found
CVE-2024-37015
An issue was discovered in Ada Web Server 20.0. When configured to use SSL which is not the default setting, the SSL/TLS used to establish connections to external services is done without proper hostname validation. This is exploitable by man-in-the-middle attackers...
CVE-2024-37015
An issue was discovered in Ada Web Server 20.0. When configured to use SSL which is not the default setting, the SSL/TLS used to establish connections to external services is done without proper hostname validation. This is exploitable by man-in-the-middle attackers...
CVE-2024-37015
An issue was discovered in Ada Web Server 20.0. When configured to use SSL which is not the default setting, the SSL/TLS used to establish connections to external services is done without proper hostname validation. This is exploitable by man-in-the-middle attackers...
CVE-2024-37015
CVE-2024-37015 affects Ada Web Server 20.0. When SSL/TLS is enabled (not the default), the outbound SSL handshake validates hostnames incorrectly, exposing connections to MITM attackers. The public descriptions consistently report a hostname validation flaw during external-service connections. No...
CVE-2024-37015
An issue was discovered in Ada Web Server 20.0. When configured to use SSL which is not the default setting, the SSL/TLS used to establish connections to external services is done without proper hostname validation. This is exploitable by man-in-the-middle attackers...