CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The DecodeHSTSPreloadRaw function in net/http/transportsecuritystate.cc in Google Chrome before 43.0.2357.130 does not properly canonicalize DNS hostnames before making comparisons to HSTS or HPKP preload entries, which allows remote attackers to bypass intended access restrictions via a string...

4.3CVSS9AI score0.00924EPSS

Exploits0References3

OpenVAS•added 2021/11/11 12:0 a.m.•15 views

Mozilla Firefox Security Advisory (MFSA2015-13) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

5CVSS9.6AI score0.00135EPSS

Exploits0References3

Cvelist•added 2018/12/09 7:0 p.m.•8 views

CVE-2018-19982

An issue was discovered on KT MC01507L Z-Wave S0 devices. It occurs because HPKP is not implemented. The communication architecture is APP Server Controller HUB Node products which are controlled by HUB. The prerequisite is that the attacker is on the same network as the target HUB, and can use I...

5.3AI score0.00049EPSS

Exploits0References1

OpenVAS•added 2017/10/10 12:0 a.m.•16 views

SSL/TLS: Check for `max-age` Attribute in HPKP Header

The remote web server is using a too low value within the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.4AI score

Exploits0References4

OpenVAS•added 2017/10/09 12:0 a.m.•39 views

SSL/TLS: `includeSubDomains` Missing in HPKP Header

The remote web server is missing the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.108249";...

7.5AI score

Exploits0References4

OpenVAS•added 2017/10/09 12:0 a.m.•59 views

SSL/TLS: HTTP Public Key Pinning (HPKP) Detection

Checks if the remote web server has HTTP Public Key Pinning HPKP enabled. Note: Most major browsers have dropped / deprecated support for this header in 2020. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

7.5AI score

Exploits0References4

OpenVAS•added 2017/10/09 12:0 a.m.•66 views

SSL/TLS: HPKP / HSTS / Expect-CT Headers sent via plain HTTP

This script checks if the remote HTTP server is sending a HPKP, HSTS and/or Expect-CT header via plain HTTP. Note: Most major browsers have dropped / deprecated support for this header in 2020. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced...

7.4AI score

Exploits0References9

OpenVAS•added 2017/10/09 12:0 a.m.•99 views

SSL/TLS: HTTP Public Key Pinning (HPKP) Missing

The remote web server is not enforcing HTTP Public Key Pinning HPKP. Note: Most major browsers have dropped / deprecated support for this header in 2020. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

7.5AI score

Exploits0References6

Qualys Blog•added 2017/09/19 11:38 a.m.•71 views

Fixing HPKP with Certificate Constraints

This is the third post in my series on HPKP. In my first post I declared HPKP dead, and in my second post I explored the possibility of fixing it by introducing pin revocation. Today I will consider an entirely different approach to make HPKP much safer, by changing how it’s activated. In my...

6.8AI score

Exploits0

Qualys Blog•added 2017/09/05 9:2 a.m.•40 views

Fixing HPKP with Pin Revocation

Last year, almost exactly to the day, I declared HPKP effectively dead. I believed then—and I still do—that HPKP is too complex and too dangerous to be worth the effort. The biggest problem lies in the fact that there is no sufficient margin of safety; pinning failures are always catastrophic...

6.7AI score

Exploits0

Kitploit•added 2017/03/16 2:11 p.m.•113 views

SSLsplit - transparent SSL/TLS interception

SSLsplit is a tool for man-in-the-middle attacks against SSL/TLS encrypted network connections. It is intended to be useful for network forensics, application security analysis and penetration testing. SSLsplit is designed to transparently terminate connections that are redirected to it using a...

7.1AI score

Exploits0References1

Tenable Nessus•added 2016/06/16 12:0 a.m.•15 views

Google Chrome < 51.0.2704.63 Multiple Vulnerabilities

Binary data 9372.pasl...

8.8CVSS7.3AI score0.01485EPSS

Exploits1References2

Tenable Nessus•added 2016/06/06 12:0 a.m.•34 views

openSUSE Security Update : Chromium (openSUSE-2016-682)

Chromium was updated to 51.0.2704.79 to fix the following vulnerabilities : - CVE-2016-1696: Cross-origin bypass in Extension bindings - CVE-2016-1697: Cross-origin bypass in Blink - CVE-2016-1698: Information leak in Extension bindings - CVE-2016-1699: Parameter sanitization failure in DevTools ...

8.8CVSS7.2AI score0.12632EPSS

Exploits7References34

NVD•added 2016/06/05 11:59 p.m.•18 views

CVE-2016-1694

browser/browsingdata/browsingdataremover.cc in Google Chrome before 51.0.2704.63 deletes HPKP pins during cache clearing, which makes it easier for remote attackers to spoof web sites via a valid certificate from an arbitrary recognized Certification Authority...

5.3CVSS6.2AI score0.00675EPSS

Exploits0References11