5 matches found
CVE-2018-1000664
daneren2005 DSub for Subsonic Android client version 5.4.1 contains a CWE-295: Improper Certificate Validation vulnerability in HTTPS Client that can result in Any non-CA signed server certificate, including self signed and expired, are accepted by the client. This attack appear to be exploitable...
CVE-2018-1000664
daneren2005 DSub for Subsonic Android client version 5.4.1 contains a CWE-295: Improper Certificate Validation vulnerability in HTTPS Client that can result in Any non-CA signed server certificate, including self signed and expired, are accepted by the client. This attack appear to be exploitable...
CVE-2018-1000664
daneren2005 DSub for Subsonic Android client version 5.4.1 contains a CWE-295: Improper Certificate Validation vulnerability in HTTPS Client that can result in Any non-CA signed server certificate, including self signed and expired, are accepted by the client. This attack appear to be exploitable...
CVE-2018-1000664
daneren2005 DSub for Subsonic Android client version 5.4.1 contains a CWE-295: Improper Certificate Validation vulnerability in HTTPS Client that can result in Any non-CA signed server certificate, including self signed and expired, are accepted by the client. This attack appear to be exploitable...
CVE-2018-1000664
CVE-2018-1000664 affects daneren2005 DSub for Subsonic (Android client) v5.4.1. The vulnerability is CWE-295: Improper Certificate Validation in the HTTPS client, causing acceptance of any non-CA signed server certificate (including self-signed and expired). Exploitation requires the victim to co...