5 matches found
EUVD-2024-30698
Malicious code in bioql PyPI...
CVE-2024-32928
The libcurl CURLOPTSSLVERIFYPEER option was disabled on a subset of requests made by Nest production devices which enabled a potential man-in-the-middle attack on requests to Google cloud services by any host the traffic was routed through...
CVE-2024-32928
The libcurl CURLOPTSSLVERIFYPEER option was disabled on a subset of requests made by Nest production devices which enabled a potential man-in-the-middle attack on requests to Google cloud services by any host the traffic was routed through...
CVE-2024-32928
CVE-2024-32928 relates to libcurl where CURLOPT_SSL_VERIFYPEER was disabled on a subset of requests from Nest production devices, enabling potential MITM attacks on traffic to Google Cloud Services. Connected documents confirm the issue is tied to Nest devices and libcurl behavior, with some sour...
PT-2024-24983 · Google · Nest
Name of the Vulnerable Software and Affected Versions: Nest production devices affected versions not specified Description: The issue concerns the libcurl CURLOPT SSL VERIFYPEER option being disabled on a subset of requests made by Nest production devices. This enabled a potential man-in-the-midd...