Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:50 a.m.5 views

CVE-2020-24560

An incomplete SSL server certification validation vulnerability in the Trend Micro Security 2019 v15 consumer family of products could allow an attacker to combine this vulnerability with another attack to trick an affected client into downloading a malicious update instead of the expected one...

7.5CVSS6.8AI score0.01772EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2023/10/23 12:0 a.m.25 views

JVN#02058996: HP ThinUpdate vulnerable to improper server certificate verification

HP ThinUpdate provided by HP Development Company, L.P. is vulnerable to improper server certificate verification CWE-295. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on an encrypted communication or alter the communication. Solution Update the Software Update the software...

7.5CVSS7.3AI score0.00538EPSS
Exploits0
CVE
CVE
added 2023/06/13 12:0 a.m.38 views

CVE-2023-29501

The CVE-2023-29501 entry concerns RUNSYSTEM’s Jiyu Kukan Toku-Toku coupon App for iOS and Android (versions 3.5.0 and earlier). Root cause: improper server certificate verification (CWE-295). Impact: enables a man-in-the-middle to eavesdrop on encrypted communications. Affected products: Jiyu Kuk...

4.8CVSS4.8AI score0.00281EPSS
Exploits0References4Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2021/09/28 12:0 a.m.27 views

JVN#10168753: SNKRDUNK Market Place App for iOS vulnerable to improper server certificate verification

SNKRDUNK Market Place App for iOS provided SODA, Inc. is vulnerable to improper server certificate verification CWE-295. Impact A man-in-the-middle attack may allow an attacker to eavesdrop on and/or alter the communication. Solution Update the application Update the application to the latest...

7.4CVSS7AI score0.0047EPSS
Exploits0
Rows per page
Query Builder