EUVD-2021-26620

Malware in sbrugna...

CVE-2021-3285

jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS...

GitHub Security Lab: [Java] CWE-295: Disabled certificate validation in JXBrowser

This bug was reported directly to GitHub Security Lab...

CVE-2021-3285

jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS...

CVE-2021-3285

jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS...

Design/Logic Flaw

jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS...

TI Code Composer Studio IDE Trust Management Issue Vulnerability

TI Code Composer Studio IDE is a Texas Instruments TI integrated development environment that supports TI's microcontroller and embedded processor products. The software includes a complete set of tools for developing and debugging embedded applications. It includes a C/C++ compiler for...

CVE-2021-3285

The CVE-2021-3285 entry affects TI Code Composer Studio IDE (versions 8.x–10.x) where jxbrowser fails to verify X.509 certificates for HTTPS. Root cause: the affected jxbrowser component in CCS does not perform proper validation of server certificates, enabling potential man-in-the-middle if an a...

CVE-2021-3285

jxbrowser in TI Code Composer Studio IDE 8.x through 10.x before 10.1.1 does not verify X.509 certificates for HTTPS...

JXBrowser JavaScript-Java bridge in the RCE vulnerability-vulnerability warning-the black bar safety net

I recently was studying how to use JXBrowser to achieve a set of experimental scanning techniques. When I use JXBrowser library in the process, I suddenly thought, whether it can be by calling different classes to attack the JXBrowser client, and through a Web page to achieve remote code executio...