Lucene search
+L

917 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-2129

Malicious code in bioql PyPI...

5.8CVSS7.1AI score0.09254EPSS
Exploits0References35
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-0269

Malicious code in bioql PyPI...

8.6CVSS8.2AI score0.00532EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-3819

Malicious code in bioql PyPI...

5.9CVSS6.2AI score0.00497EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-12102

Malicious code in bioql PyPI...

7.5CVSS6.8AI score0.0079EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.22 views

EUVD-2022-15590

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00998EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-4812

Malicious code in bioql PyPI...

9.8CVSS8.7AI score0.0218EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-4023

Malicious code in bioql PyPI...

4.3CVSS7.2AI score0.06685EPSS
Exploits0References18
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-6912

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00551EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-30996

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.0118EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/09 3:12 p.m.7 views

Security Bulletin: SSL Certificate Hostname Verification Bypass in Apache Commons HttpClient 3.x Allowing MITM Attacks affects watsonx.data

Summary Apache Commons HttpClient 3.x, as used in Amazon Flexible Payments Service FPS merchant Java SDK and other products, does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows...

5.8CVSS6.4AI score0.09254EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/09/01 2:52 p.m.6 views

Security Bulletin: A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, which affects IBM watsonx.data

Summary A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discovered by the Apache HttpClient team. These can affect watsonx.data. Vulnerability Details CVEID:CVE-2025-27820 DESCRIPTION: A bug in PSL validation...

7.5CVSS6.7AI score0.0079EPSS
Exploits0Affected Software1
Redos
Redos
added 2025/08/08 12:0 a.m.7 views

ROS-20250808-01

A vulnerability in the Apache HttpClient client module is related to insufficient input validation. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected data or gain access to modify, add, or delete protected data. access to protected data or ga...

5.3CVSS7AI score0.08665EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/07/29 12:0 a.m.8 views

Atlassian Confluence 9.2.4 < 9.2.6 / 9.4.x < 9.5.2 (CONFSERVER-100164)

The version of Atlassian Confluence Server running on the remote host is affected by a vulnerability as referenced in the CONFSERVER-100164 advisory. - A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discover...

7.5CVSS6.8AI score0.0079EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/07/29 12:0 a.m.6 views

Atlassian Jira Service Management Data Center and Server 5.12.23 < 5.12.24 / 10.3.x < 10.3.8 / 10.5.x < 10.7.2 (JSDSERVER-16269)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-16269 advisory. - A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie...

7.5CVSS6.8AI score0.0079EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/11 11:33 a.m.8 views

Security Bulletin: IBM watsonx Orchestrate Cartridge affected by vulnerability in httpclient5-5.4.2.jar

Summary IBM watsonx Orchestrate Cartridge contains a vulnerable version of httpclient5-5.4.2.jar Vulnerability Details CVEID:CVE-2025-27820 DESCRIPTION: A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification...

7.5CVSS6.6AI score0.0079EPSS
Exploits0Affected Software1
Atlassian
Atlassian
added 2025/07/08 5:9 a.m.17 views

Third-Party Dependency in Bamboo Data Center and Server

This High severity Third-Party Dependency vulnerability was introduced in versions 10.2.4 and 11.0.0 of Bamboo Data Center and Server. This Third-Party Dependency vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N allows an unauthenticated...

7.5CVSS6.7AI score0.0079EPSS
Exploits0
Atlassian
Atlassian
added 2025/07/02 4:9 a.m.21 views

MITM (Man-in-the-Middle) org.apache.httpcomponents.client5:httpclient5 Dependency in Confluence Data Center and Server

This High severity Third-Party Dependency vulnerability was introduced in versions 9.2.4, 9.4.0, and 9.5.1 of Confluence Data Center and Server however LTS version 8.5 is not affected by this CVE. This Third-Party Dependency vulnerability, with a CVSS Score of 7.5 and a CVSS Vector of...

7.5CVSS6.8AI score0.0079EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/05/14 6:48 p.m.14 views

K000151334: Apache HttpClient vulnerability CVE-2025-27820

Security Advisory Description A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discovered by the Apache HttpClient team. Fixed in the 5.4.3 release CVE-2025-27820 Impact There is no impact; F5 products are not...

7.5CVSS6.8AI score0.0079EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.11 views

Alibaba Cloud Linux 3 : 0160: maven:3.6 (ALINUX3-SA-2022:0160)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0160 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2020-13956: Apache HttpClient versions...

9.8CVSS7AI score0.08665EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/09 9:6 a.m.10 views

Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discovered by the Apache HttpClient team.

Summary Security Bulletin: IBM Maximo Application Suite Ai-Service Component uses A bug in PSL validation logic in Apache HttpClient 5.4.x disables domain checks, affecting cookie management and host name verification. Discovered by the Apache HttpClient team.This bulletin contains information...

7.5CVSS6.2AI score0.0079EPSS
Exploits0Affected Software1
Rows per page
Query Builder