Lucene search
+L

11 matches found

CNNVD
CNNVD
added 2026/03/02 12:0 a.m.9 views

AFFiNE.Pro 输入验证错误漏洞

AFFiNE.Pro is an open-source next-generation knowledge base developed by Toeverything. Versions of AFFiNE.Pro prior to 0.26.0 contained a vulnerability related to input validation errors. This vulnerability stemmed from defects in the domain name verification logic of the /redirect-proxy endpoint...

6.9CVSS5.8AI score0.00164EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2001-1546

Malware in sbrugna...

6.4CVSS6.4AI score0.00682EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/07/18 10:15 p.m.14 views

CVE-2025-7395

A certificate verification error in wolfSSL when building with the WOLFSSLSYSCACERTS and WOLFSSLAPPLENATIVECERTVALIDATION options results in the wolfSSL client failing to properly verify the server certificate's domain name, allowing any certificate issued by a trusted CA to be accepted regardles...

9.2CVSS5.2AI score0.00222EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/21 7:41 p.m.8 views

CVE-2001-1568

CMG WAP gateway does not verify the fully qualified domain name URL with X.509 certificates from root certificate authorities, which allows remote attackers to spoof SSL certificates via a man-in-the-middle attack...

6.4CVSS6.9AI score0.00682EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 7:41 p.m.7 views

CVE-2001-1569

Openwave WAP gateway does not verify the fully qualified domain name URL with X.509 certificates from root certificate authorities, which allows remote attackers to spoof SSL certificates via a man-in-the-middle attack...

6.4CVSS6.9AI score0.00682EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2013/02/19 8:40 p.m.49 views

Moderate: Red Hat Security Advisory: jakarta-commons-httpclient security update

Updated jakarta-commons-httpclient packages that fix one security issue are now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detaile...

5.8CVSS6.6AI score0.09254EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2012/11/04 12:0 a.m.44 views

CVE-2012-5783

Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle...

5.8CVSS6.9AI score0.09254EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2012/09/18 1:0 a.m.11 views

CVE-2012-2993

Microsoft Windows Phone 7 does not verify the domain name in the subject's Common Name CN field of an X.509 certificate, which allows man-in-the-middle attackers to spoof an SSL server for the 1 POP3, 2 IMAP, or 3 SMTP protocol via an arbitrary valid certificate...

6.8AI score0.03595EPSS
Exploits1References5
CVE
CVE
added 2012/09/18 1:0 a.m.69 views

CVE-2012-2993

Microsoft Windows Phone 7 is affected: it does not verify the domain name in the server certificate’s Common Name, enabling MITM spoofing for SSL connections over POP3/IMAP/SMTP with arbitrary valid certificates. Affected software is Windows Phone 7; vulnerable component is certificate CN verific...

5.9CVSS5.6AI score0.03595EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2009/10/23 7:30 p.m.18 views

Design/Logic Flaw

muttssl.c in mutt 1.5.16 and other versions before 1.5.19, when OpenSSL is used, does not verify the domain name in the subject's Common Name CN field of an X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...

6.8CVSS6.5AI score0.01138EPSS
Exploits0References3Affected Software1
Kaspersky
Kaspersky
added 2007/12/27 12:0 a.m.69 views

KLA10182 SUI vulnerability in Google Toolbar

Lack of domain name verification was found in Google Toolbar. By exploiting this vulnerability malicious users can spoof domain names. This vulnerability can be exploited remotely via custom button manipulations. Original advisories - Related products Google-Toolbar CVE list CVE-2007-6536 high...

6.8CVSS6.4AI score0.01251EPSS
Exploits1References2
Rows per page
Query Builder