Lucene search
+L

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-6880

Malware in sbrugna...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2023/06/11 4:15 p.m.8 views

jian-you.com Cross Site Scripting vulnerability OBB-3413746

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
FreeBSD
FreeBSD
added 2023/02/22 12:0 a.m.50 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This update includes 10 security fixes: 1415366 Critical CVE-2023-0941: Use after free in Prompts. Reported by Anonymous on 2023-02-13 1414738 High CVE-2023-0927: Use after free in Web Payments API. Reported by Rong Jian of VRI on 2023-02-10 1309035 High CVE-2023-0928: Us...

8.8CVSS9.6AI score0.00668EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2021/05/10 12:0 a.m.51 views

chromium -- multiple vulnerabilities

Chrome Releases reports: This release contains 19 security fixes, including: 1180126 High CVE-2021-30506: Incorrect security UI in Web App Installs. Reported by @retsew0x01 on 2021-02-19 1178202 High CVE-2021-30507: Inappropriate implementation in Offline. Reported by Alison Huffman, Microsoft...

8.8CVSS0.9AI score0.02517EPSS
Exploits14References1
Schneier on Security
Schneier on Security
added 2021/03/04 12:25 p.m.98 views

Chinese Hackers Stole an NSA Windows Exploit in 2014

Check Point has evidence that probably government affiliated Chinese hackers stole and cloned an NSA Windows hacking tool years before probably government affiliated Russian hackers stole and then published the same tool. Heres the timeline: The timeline basically seems to be, according to Check...

6.9CVSS2.9AI score0.11022EPSS
Exploits1
The Hacker News
The Hacker News
added 2021/02/22 11:15 a.m.81 views

Chinese Hackers Had Access to a U.S. Hacking Tool Years Before It Was Leaked Online

On August 13, 2016, a hacking unit calling itself "The Shadow Brokers" announced that it had stolen malware tools and exploits used by the Equation Group, a sophisticated threat actor believed to be affiliated to the Tailored Access Operations TAO unit of the U.S. National Security Agency NSA...

7.8CVSS0.1AI score0.11022EPSS
Exploits1
NVD
NVD
added 2014/10/16 7:55 p.m.10 views

CVE-2014-7001

The Jian Ren aka cn.sh.scustom.janren application 1.5.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
Prion
Prion
added 2014/10/16 7:55 p.m.10 views

Information disclosure

The Jian Ren aka cn.sh.scustom.janren application 1.5.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2014/10/16 7:0 p.m.41 views

CVE-2014-7001

CVE-2014-7001 affects the Jian Ren (cn.sh.scustom.janren) Android app version 1.5.1. Root cause: the app does not verify X.509 certificates from SSL servers, enabling MITM attackers to spoof servers and access sensitive data via a crafted certificate. No patch/remediation details are provided in ...

5.4CVSS6AI score0.00266EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/10/16 7:0 p.m.16 views

CVE-2014-7001

The Jian Ren aka cn.sh.scustom.janren application 1.5.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
Rows per page
Query Builder