CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Snyk•added 2026/04/08 9:0 p.m.•1 views

Improper Authentication

Overview org.apache.tomcat:tomcat-coyote is a Tomcat Connectors and HTTP parser. Affected versions of this package are vulnerable to Improper Authentication in processOCSPRequest, which is part of the the CLIENTCERT authentication process. In some "edge cases", an attacker can trigger a soft-fail...

8.3CVSS5.8AI score0.00149EPSS

Exploits0References2

Snyk•added 2026/04/08 9:0 p.m.•3 views

Improper Authentication

Overview Affected versions of this package are vulnerable to Improper Authentication in processOCSPRequest, which is part of the the CLIENTCERT authentication process. An attacker can trigger a soft-fail of OCSP checks when soft-fail is disabled. Remediation Upgrade...

9.1CVSS5.8AI score0.00028EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-23729

Malware in sbrugna...

9.8CVSS9.2AI score0.00513EPSS

Exploits0References3

RedhatCVE•added 2025/05/22 6:43 p.m.•6 views

CVE-2021-37155

wolfSSL 4.6.x through 4.7.x before 4.8.0 does not produce a failure outcome when the serial number in an OCSP request differs from the serial number in the OCSP response...

9.8CVSS6.8AI score0.00513EPSS

Exploits0References1

UbuntuCve•added 2021/07/21 3:16 p.m.•18 views

CVE-2021-37155

wolfSSL 4.6.x through 4.7.x before 4.8.0 does not produce a failure outcome when the serial number in an OCSP request differs from the serial number in the OCSP response...

9.8CVSS7.2AI score0.00513EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by