Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Packet Storm News
Packet Storm Newsadded 2025/08/19 12:0 a.m.1 views

IBM MQ SSL Validation Bypass

A vulnerability exists in IBM MQ Message Queue that allows the bypassing of SSL certificate validation. By injecting a fake SSL certificate and using customized MQCONNX parameters, an unauthorized client connection to an IBM MQ server can be established...

9.8CVSS6.7AI score0.00043EPSS
Exploits1
Cvelist
Cvelistadded 2022/06/17 6:15 p.m.18 views

CVE-2022-31083 Authentication bypass in Parse Server Apple Game Center auth adapter

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 4.10.11 and 5.2.2, the certificate in the Parse Server Apple Game Center auth adapter not validated. As a result, authentication could potentially be bypassed by making a fake...

8.6CVSS8.4AI score0.00175EPSS
Exploits0References4
CNNVD
CNNVDadded 2022/06/17 12:0 a.m.4 views

Parse Server 信任管理问题漏洞

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. A trust management issue vulnerability exists in versions of Parse Server prior to 5.2.2 that stems from an unvalidated certificate in the Apple Game Center authentication adapter, which can be...

8.6CVSS7.5AI score0.00175EPSS
Exploits0References5
exploitpack
exploitpackadded 2015/11/05 12:0 a.m.19 views

OpenSSL - Alternative Chains Certificate Forgery

OpenSSL - Alternative Chains Certificate Forgery !/usr/bin/env ruby encoding: ASCII-8BIT By Ramon de C Valle. This work is dedicated to the public domain. require 'openssl' require 'optparse' require 'socket' Version = 0, 0, 1 Release = nil class String def hexdumpstream=$stdout 0.stepbytesize - ...

0.1AI score
Exploits0
Metasploit
Metasploitadded 2015/07/16 5:36 a.m.37 views

OpenSSL Alternative Chains Certificate Forgery MITM Proxy

This module exploits a logic error in OpenSSL by impersonating the server and sending a specially-crafted chain of certificates, resulting in certain checks on untrusted certificates to be bypassed on the client, allowing it to use a valid leaf certificate as a CA certificate to sign a fake...

6.5CVSS0.76449EPSS
Exploits6
Cisco Threats
Cisco Threatsadded 2014/01/14 3:44 p.m.10 views

Threat Outbreak Alert: Fake Certificate Update Information Email Messages on January 13, 2014

Medium Alert ID: 32427 First Published: 2014 January 14 15:44 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain certificate update information attachment for the recipient. The text in the email message attempts to convinc...

0.5AI score
Exploits0
Rows per page
Query Builder