Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-19095

Malicious code in bioql PyPI...

7.4CVSS6.5AI score0.00114EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-19096

Malicious code in bioql PyPI...

8CVSS6.5AI score0.00164EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/06/27 9:21 a.m.6 views

CVE-2025-41256

Cyberduck and Mountain Duck improper handle TLS certificate pinning for untrusted certificates e.g., self-signed, since the certificate fingerprint is stored as SHA-1, although SHA-1 is considered weak. This issue affects Cyberduck: through 9.1.6; Mountain Duck: through 4.17.5...

7.4CVSS7.1AI score0.00114EPSS
Exploits0References1
NVD
NVD
added 2025/06/25 10:15 a.m.10 views

CVE-2025-41256

Cyberduck and Mountain Duck improper handle TLS certificate pinning for untrusted certificates e.g., self-signed, since the certificate fingerprint is stored as SHA-1, although SHA-1 is considered weak. This issue affects Cyberduck: through 9.1.6; Mountain Duck: through 4.17.5...

7.4CVSS0.00114EPSS
Exploits0References2
NVD
NVD
added 2025/06/25 10:15 a.m.11 views

CVE-2025-41255

Cyberduck and Mountain Duck improperly handle TLS certificate pinning for untrusted certificates e.g., self-signed, unnecessarily installing it to the Windows Certificate Store of the current user without any restrictions. This issue affects Cyberduck through 9.1.6 and Mountain Duck through 4.17....

8CVSS0.00164EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/25 9:21 a.m.15 views

CVE-2025-41255 Cyberduck and Mountain Duck - Improper Certificate Store Handling

Cyberduck and Mountain Duck improperly handle TLS certificate pinning for untrusted certificates e.g., self-signed, unnecessarily installing it to the Windows Certificate Store of the current user without any restrictions. This issue affects Cyberduck through 9.1.6 and Mountain Duck through 4.17....

8CVSS0.00164EPSS
Exploits0References2
CVE
CVE
added 2025/06/25 9:21 a.m.30 views

CVE-2025-41255

The CVE-2025-41255 issue affects Cyberduck and Mountain Duck through TLS certificate pinning handling. According to multiple sources, the vulnerable behavior is the unnecessary installation of untrusted certificates (e.g., self-signed) into the Windows Certificate Store of the current user, drive...

8CVSS7.2AI score0.00164EPSS
Exploits0References2
OSV
OSV
added 2025/06/25 9:21 a.m.7 views

CVE-2025-41255 Cyberduck and Mountain Duck - Improper Certificate Store Handling

Cyberduck and Mountain Duck improperly handle TLS certificate pinning for untrusted certificates e.g., self-signed, unnecessarily installing it to the Windows Certificate Store of the current user without any restrictions. This issue affects Cyberduck through 9.1.6 and Mountain Duck through 4.17....

8CVSS5.9AI score0.00164EPSS
Exploits0References5
CVE
CVE
added 2025/06/25 9:16 a.m.30 views

CVE-2025-41256

CVE-2025-41256 affects Cyberduck (through 9.1.6) and Mountain Duck (through 4.17.5) due to improper TLS certificate pinning for untrusted certificates, with fingerprint storage using SHA-1. This creates a high-severity risk (CVSSv3: 7.4, High) for network-based situations where self-signed or unt...

7.4CVSS7AI score0.00114EPSS
Exploits0References2
OSV
OSV
added 2025/06/25 9:16 a.m.6 views

CVE-2025-41256 Cyberduck and Mountain Duck - Weak Hash Algorithm for Certificate Fingerprint

Cyberduck and Mountain Duck improper handle TLS certificate pinning for untrusted certificates e.g., self-signed, since the certificate fingerprint is stored as SHA-1, although SHA-1 is considered weak. This issue affects Cyberduck: through 9.1.6; Mountain Duck: through 4.17.5...

7.4CVSS5.9AI score0.00114EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/06/25 9:16 a.m.13 views

CVE-2025-41256 Cyberduck and Mountain Duck - Weak Hash Algorithm for Certificate Fingerprint

Cyberduck and Mountain Duck improper handle TLS certificate pinning for untrusted certificates e.g., self-signed, since the certificate fingerprint is stored as SHA-1, although SHA-1 is considered weak. This issue affects Cyberduck: through 9.1.6; Mountain Duck: through 4.17.5...

7.4CVSS0.00114EPSS
Exploits0References2
Rows per page
Query Builder