CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2010-4500

Malware in sbrugna...

5.9CVSS5.9AI score0.00231EPSS

Exploits0References6

OSV•added 2019/11/13 7:15 p.m.•4 views

CVE-2010-4533

offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 protocol, which is a flawed protocol with multiple security deficiencies...

9.8CVSS6.8AI score0.00276EPSS

Exploits0References5

NVD•added 2019/11/13 7:15 p.m.•13 views

CVE-2010-4533

offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 protocol, which is a flawed protocol with multiple security deficiencies...

9.8CVSS9.6AI score0.00276EPSS

Exploits0References5

UbuntuCve•added 2019/11/13 7:15 p.m.•18 views

CVE-2010-4533

offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 protocol, which is a flawed protocol with multiple security deficiencies...

9.8CVSS7.2AI score0.00276EPSS

Exploits0References1

Prion•added 2019/11/13 7:15 p.m.•17 views

Security feature bypass

offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 protocol, which is a flawed protocol with multiple security deficiencies...

7.5CVSS7.1AI score0.00276EPSS

Exploits0References5Affected Software2

Cvelist•added 2019/11/13 6:30 p.m.•14 views

CVE-2010-4533

offlineimap before 6.3.4 added support for SSL server certificate validation but it is still possible to use SSL v2 protocol, which is a flawed protocol with multiple security deficiencies...

9.6AI score0.00276EPSS

Exploits0References5

Debian CVE•added 2019/11/13 6:30 p.m.•19 views

CVE-2010-4533

Removed by vendor...

9.8CVSS9.5AI score0.00276EPSS

Exploits0

CVE•added 2019/11/13 6:30 p.m.•42 views

CVE-2010-4533

CVE-2010-4533 affects offlineimap prior to version 6.3.4, where SSL certificate validation was added but SSLv2 is still enabled. This keeps SSLv2’s known weaknesses and yields high CVSS metrics (Confidentiality/Integrity/Availability partial in CVSS2; Critical in CVSS3.1). The connected documents...

9.8CVSS9.4AI score0.00276EPSS

Exploits0References5Affected Software1

OSV•added 2019/11/13 6:15 p.m.•5 views

CVE-2010-4532

offlineimap before 6.3.2 does not check for SSL server certificate validation when "ssl = yes" option is specified which can allow man-in-the-middle attacks...

5.9CVSS6.8AI score0.00231EPSS

Exploits0References5

NVD•added 2019/11/13 6:15 p.m.•13 views

CVE-2010-4532

offlineimap before 6.3.2 does not check for SSL server certificate validation when "ssl = yes" option is specified which can allow man-in-the-middle attacks...

5.9CVSS5.7AI score0.00231EPSS

Exploits0References5

UbuntuCve•added 2019/11/13 6:15 p.m.•25 views

CVE-2010-4532

offlineimap before 6.3.2 does not check for SSL server certificate validation when "ssl = yes" option is specified which can allow man-in-the-middle attacks...

5.9CVSS6.2AI score0.00231EPSS

Exploits0References1

Prion•added 2019/11/13 6:15 p.m.•18 views

Code injection

offlineimap before 6.3.2 does not check for SSL server certificate validation when "ssl = yes" option is specified which can allow man-in-the-middle attacks...

4.3CVSS7.1AI score0.00231EPSS

Exploits0References5Affected Software2

Debian CVE•added 2019/11/13 5:19 p.m.•16 views

CVE-2010-4532

Removed by vendor...

5.9CVSS6AI score0.00231EPSS

Exploits0

CVE•added 2019/11/13 5:19 p.m.•52 views

CVE-2010-4532

CVE-2010-4532 affects offlineimap prior to 6.3.2. The issue is that SSL certificate validation is not performed when the option “ssl = yes” is used, enabling potential man-in-the-middle attacks. This is caused by missing certificate validation in the SSL path of the client. Impact is limited to c...

5.9CVSS5.7AI score0.00231EPSS

Exploits0References5Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by