20 matches found
EUVD-2021-31119
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2021-44273
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - e2guardian v5.4.x = v5.4.3r is affected by missing SSL certificate validation in the SSL MITM engine. In standalone mode i.e., acting as a proxy or a transparen...
Debian: Security Advisory (DLA-3564-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3564-1] e2guardian security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3564-1 [email protected] https://www.debian.org/lts/security/ Chris Lamb September 12, 2023 https://wiki.debian.org/LTS -...
Debian dla-3564 : e2guardian - security update
The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3564 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3564-1 [email protected] https://www.debian.org/lts/security/...
DLA-3564-1 e2guardian - security update
Bulletin has no description...
Mageia: Security Advisory (MGASA-2021-0594)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated e2guardian packages fix security vulnerability
e2guardian did not validate TLS hostnames CVE-2021-44273...
MGASA-2021-0594 Updated e2guardian packages fix security vulnerability
e2guardian did not validate TLS hostnames CVE-2021-44273...
CVE-2021-44273
e2guardian v5.4.x = v5.4.3r is affected by missing SSL certificate validation in the SSL MITM engine. In standalone mode i.e., acting as a proxy or a transparent proxy, with SSL MITM enabled, e2guardian, if built with OpenSSL v1.1.x, did not validate hostnames in certificates of the web servers...
CVE-2021-44273
e2guardian v5.4.x = v5.4.3r is affected by missing SSL certificate validation in the SSL MITM engine. In standalone mode i.e., acting as a proxy or a transparent proxy, with SSL MITM enabled, e2guardian, if built with OpenSSL v1.1.x, did not validate hostnames in certificates of the web servers...
DEBIAN-CVE-2021-44273
e2guardian v5.4.x = v5.4.3r is affected by missing SSL certificate validation in the SSL MITM engine. In standalone mode i.e., acting as a proxy or a transparent proxy, with SSL MITM enabled, e2guardian, if built with OpenSSL v1.1.x, did not validate hostnames in certificates of the web servers...
CVE-2021-44273
e2guardian v5.4.x = v5.4.3r is affected by missing SSL certificate validation in the SSL MITM engine. In standalone mode i.e., acting as a proxy or a transparent proxy, with SSL MITM enabled, e2guardian, if built with OpenSSL v1.1.x, did not validate hostnames in certificates of the web servers...
Design/Logic Flaw
e2guardian v5.4.x = v5.4.3r is affected by missing SSL certificate validation in the SSL MITM engine. In standalone mode i.e., acting as a proxy or a transparent proxy, with SSL MITM enabled, e2guardian, if built with OpenSSL v1.1.x, did not validate hostnames in certificates of the web servers...
e2guardian 信任管理问题漏洞
e2guardian is a web content filter that works in proxy, transparent or icap server mode. A trust management issue vulnerability exists in e2guardian that stems from e2guardian v5.4.x = v5.4.3r being affected by a lack of SSL certificate validation in the SSL MITM engine. In standalone mode i.e.,...
CVE-2021-44273
e2guardian v5.4.x = v5.4.3r is affected by missing SSL certificate validation in the SSL MITM engine. In standalone mode i.e., acting as a proxy or a transparent proxy, with SSL MITM enabled, e2guardian, if built with OpenSSL v1.1.x, did not validate hostnames in certificates of the web servers...
CVE-2021-44273
e2guardian v5.4.x = v5.4.3r is affected by missing SSL certificate validation in the SSL MITM engine. In standalone mode i.e., acting as a proxy or a transparent proxy, with SSL MITM enabled, e2guardian, if built with OpenSSL v1.1.x, did not validate hostnames in certificates of the web servers...
PT-2021-24075 · Openssl +1 · Openssl +1
Name of the Vulnerable Software and Affected Versions: e2guardian versions 5.4.x through 5.4.3r Description: The issue is related to missing SSL certificate validation in the SSL MITM engine of e2guardian. Specifically, when e2guardian is used in standalone mode with SSL MITM enabled and is built...
CVE-2021-44273
e2guardian v5.4.x = v5.4.3r is affected by missing SSL certificate validation in the SSL MITM engine. In standalone mode i.e., acting as a proxy or a transparent proxy, with SSL MITM enabled, e2guardian, if built with OpenSSL v1.1.x, did not validate hostnames in certificates of the web servers...
CVE-2021-44273
The CVE-2021-44273 issue affects e2guardian v5.4.x and earlier up to v5.4.3r. In standalone proxy mode with SSL MITM enabled, and when built against OpenSSL v1.1.x, the SSL MITM engine did not validate hostnames of upstream web servers, enabling potential MITM attacks. Public sources confirm the ...