CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-9459

Malware in sbrugna...

7.4CVSS7.5AI score0.00812EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2020-1477

Malware in sbrugna...

4.8CVSS4.9AI score0.00079EPSS

Exploits0References4

RedhatCVE•added 2025/05/22 4:27 p.m.•3 views

CVE-2020-17514

Apache Fineract prior to 1.5.0 disables HTTPS hostname verification in ProcessorHelper in the configureClient method. Under typical deployments, a man in the middle attack could be successful...

7.4CVSS6.7AI score0.00812EPSS

Exploits0

Prion•added 2021/05/27 12:15 p.m.•11 views

Code injection

Apache Fineract prior to 1.5.0 disables HTTPS hostname verification in ProcessorHelper in the configureClient method. Under typical deployments, a man in the middle attack could be successful...

5.8CVSS7.3AI score0.00812EPSS

Exploits0References3Affected Software1

OSV•added 2021/03/24 9:15 p.m.•8 views

CVE-2021-21385

Mifos-Mobile Android Application for MifosX is an Android Application built on top of the MifosX Self-Service platform. Mifos-Mobile before commit e505f62 disables HTTPS hostname verification of its HTTP client. Additionally it accepted any self-signed certificate as valid. Hostname verification ...

7.4CVSS6.7AI score

Exploits0References3

OSV•added 2020/10/09 1:15 p.m.•20 views

CVE-2020-13955

HttpUtilsgetURLConnection method disables explicitly hostname verification for HTTPS connections making clients vulnerable to man-in-the-middle attacks. Calcite uses internally this method to connect with Druid and Splunk so information leakage may happen when using the respective Calcite adapter...

5.9CVSS6.3AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by