Lucene search
K

143 matches found

Vulnrichment
Vulnrichment
added 2026/02/20 11:5 p.m.6 views

CVE-2026-27134 Strimzi: All CAs from a custom CA chain consisting of multiple CAs are trusted for mTLS user autentication

Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployment configurations. In versions 0.49.0 through 0.50.0, when using a custom Cluster or Clients CA with a multistage CA chain consisting of multiple CAs, Strimzi incorrectly configures the trusted...

8.1CVSS5.4AI score0.00365EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/12 10:6 p.m.4 views

Missing Authentication for Critical Function

Overview Affected versions of this package are vulnerable to Missing Authentication for Critical Function via the handler process. An attacker can trigger unauthorized WASM module execution in the controller context by sending crafted AdmissionReview requests directly to webhook endpoints from an...

8.7CVSS5.9AI score0.0041EPSS
Exploits1References2
OSV
OSV
added 2026/02/06 10:34 p.m.3 views

GHSA-4JQP-9QJV-57M2 Keylime Missing Authentication for Critical Function and Improper Authentication

Impact The Keylime registrar does not enforce mutual TLS mTLS client certificate authentication since version 7.12.0. The registrar's TLS context is configured with ssl.CERTOPTIONAL instead of ssl.CERTREQUIRED, allowing any client to connect to protected API endpoints without presenting a valid...

9.4CVSS5.6AI score0.0575EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/01/09 8:42 a.m.15 views

CVE-2022-31183

fs2 is a compositional, streaming I/O library for Scala. When establishing a server-mode TLSSocket using fs2-io on Node.js, the parameter requestCert = true is ignored, peer certificate verification is skipped, and the connection proceeds. The vulnerability is limited to: 1. fs2-io running on...

9.8CVSS6.7AI score0.00629EPSS
Exploits1References1
Github Security Blog
Github Security Blog
added 2026/01/08 12:31 a.m.9 views

wolfSSL Python module vulnerable to Improper Authentication

A vulnerability in the handling of verifymode = CERTREQUIRED in the wolfssl Python package wolfssl-py causes client certificate requirements to not be fully enforced. Because the WOLFSSLVERIFYFAILIFNOPEERCERT flag was not included, the behavior effectively matched CERTOPTIONAL: a peer certificate...

9.3CVSS6.8AI score0.00272EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2026/01/08 12:15 a.m.9 views

CVE-2025-15346

A vulnerability in the handling of verifymode = CERTREQUIRED in the wolfssl Python package wolfssl-py causes client certificate requirements to not be fully enforced. Because the WOLFSSLVERIFYFAILIFNOPEERCERT flag was not included, the behavior effectively matched CERTOPTIONAL: a peer certificate...

9.3CVSS0.00272EPSS
Exploits0References3
Hacker One
Hacker One
added 2025/12/22 7:14 p.m.18 views

curl: HAProxy Connection Reuse leads to IP Spoofing and mTLS Context Smuggling

Executive Summary libcurl fails to respect the CURLOPTHAPROXYCLIENTIP configuration when reusing existing connections. Due to a missing check in the connection pooling logic, libcurl indiscriminately reuses a TCP/TLS connection established with a specific identity IP A for subsequent requests...

6.4AI score
Exploits0
Github Security Blog
Github Security Blog
added 2025/12/05 10:2 p.m.8 views

Strimzi allows unrestricted access to all Secrets in the same Kubernetes namespace from Kafka Connect and MirrorMaker 2 operands

Impact In some situations, Strimzi creates an incorrect Kubernetes Role which grants the Apache Kafka Connect and Apache Kafka MirrorMaker 2 operands the GET access to all Kubernetes Secrets that exist in the given Kubernetes namespace. The exact scenario when this happens is when: Apache Kafka...

7.4CVSS7.1AI score0.00178EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/07 6:38 p.m.2 views

CVE-2025-64432 KubeVirt Affected by an Authentication Bypass in Kubernetes Aggregation Layer

KubeVirt is a virtual machine management add-on for Kubernetes. Versions 1.5.3 and below, and 1.6.0 contained a flawed implementation of the Kubernetes aggregation layer's authentication flow which could enable bypass of RBAC controls. It was discovered that the virt-api component fails to...

4.7CVSS6.4AI score0.00129EPSS
Exploits1References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/10/24 2:13 a.m.4 views

Malicious code in mtls-ambassador (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7751747bc3d849e8a9b44fe993f8e2e3a5779f8c940573453433084eb4d3a07b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
Snyk
Snyk
added 2025/10/24 2:13 a.m.1 views

Malicious Package

Overview mtls-ambassador is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References2
OSV
OSV
added 2025/10/24 2:13 a.m.2 views

MAL-2025-48579 Malicious code in mtls-ambassador (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 7751747bc3d849e8a9b44fe993f8e2e3a5779f8c940573453433084eb4d3a07b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
EUVD
EUVD
added 2025/10/24 2:13 a.m.1 views

EUVD-2025-35755

Malicious code in mtls-ambassador npm...

6.6AI score
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2021-22991

Malware in sbrugna...

4.3CVSS4.7AI score0.00738EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-1046

Malware in sbrugna...

9.8CVSS9.3AI score0.00983EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-7219

Malware in sbrugna...

5.5CVSS6AI score0.00252EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-29767

Malicious code in bioql PyPI...

8.7CVSS6.3AI score0.00219EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2023-1672

Malicious code in bioql PyPI...

7.1CVSS6.2AI score0.00522EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.16 views

EUVD-2022-7497

Malicious code in bioql PyPI...

8.1CVSS6.7AI score0.00488EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-53131

Malicious code in bioql PyPI...

9.1CVSS9AI score0.00378EPSS
Exploits0References1
Rows per page
Query Builder