Lucene search
K

95 matches found

EUVD
EUVD
added 6 days ago7 views

EUVD-2026-42637

PayRange Android app, version 7.0.7 and below, contains an SSL bypass vulnerability that allows invalid certificates to be accepted in application webviews. A remote and unauthenticated attacker can steal information that the user sends...

7.5CVSS6AI score0.00229EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 6 days ago3 views

netty-codec-haproxy: Netty HAProxy PROXY protocol v2 codec: Denial of Service via memory leak from crafted PROXY protocol headers

A flaw was found in the Netty HAProxy PROXY protocol v2 codec. A remote attacker can exploit this vulnerability by sending a specially crafted HAProxy PROXY protocol v2 header with nested PP2TYPESSL type-length-value TLV records. This can lead to a memory leak, causing the underlying cumulation...

8.7CVSS6.1AI score0.00606EPSS
Exploits0References7
OSV
OSV
added 2026/07/03 7:16 a.m.5 views

ALPINE-CVE-2026-9545

In this scenario, libcurl first uses a proper HTTP/3 server for the initial transfers, and when it makes a second transfer to the same site it has been replaced by the attacker's impostor machine - without a valid certificate. When libcurl returns to the hostname the second time with a cached SSL...

7.5CVSS5.9AI score0.00408EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/07/02 11:7 p.m.10 views

CVE-2026-13079

A local privilege escalation vulnerability in the WatchGuard Mobile VPN with SSL client for Windows allows a local attacker to escalate their privileges to NT AUTHORITY\SYSTEM on the machine where the client is installed. This issue affects the Mobile VPN with SSL client for Windows up to and...

7.3CVSS5.8AI score0.00114EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/06/01 1:52 p.m.16 views

USN-8354-1 nginx vulnerabilities

It was discovered that nginx did not properly validate source addresses in the HTTP/3 QUIC module. A remote attacker could possibly use this issue to bypass authorization checks or rate limiting. This issue only affected Ubuntu 25.04 and Ubuntu 25.10. CVE-2026-40460 It was discovered that nginx...

9.2CVSS6AI score0.04261EPSS
Exploits3References6
Cvelist
Cvelist
added 2026/05/20 4:15 p.m.39 views

CVE-2026-20199

A vulnerability in the SSL certificate handling of Cisco ThousandEyes Virtual Appliance could allow an authenticated, remote attacker to execute commands on the underlying operating system as the root user. This vulnerability is due to insufficient validation of user-supplied input. An...

4.7CVSS0.00438EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/06 6:13 p.m.5 views

CVE-2026-7996

Insufficient validation of untrusted input in SSL in Google Chrome prior to 148.0.7778.96 allowed a remote attacker who had compromised the renderer process to perform UI spoofing via a crafted HTML page. Chromium security severity: Low...

4.2CVSS5.8AI score0.00172EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/04/27 3:30 p.m.11 views

GHSA-82FM-WPC2-5PMP Apache Storm Prometheus Reporter vulnerable to Improper Certificate Validation via Global SSL Context Downgrade

Improper Certificate Validation via Global SSL Context Downgrade in Apache Storm Prometheus Reporter Versions Affected: from 2.6.3 to 2.8.6 Description: In production deployments where an administrator enables storm.daemon.metrics.reporter.plugin.prometheus.skiptlsvalidation by default it is...

4.8CVSS5.8AI score0.00193EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/07 4:9 p.m.2 views

CVE-2026-35586

pyLoad is a free and open-source download manager written in Python. Prior to 0.5.0b3.dev97, the ADMINONLYCOREOPTIONS authorization set in setconfigvalue uses incorrect option names sslcert and sslkey, while the actual configuration option names are sslcertfile and sslkeyfile. This name mismatch...

6.8CVSS5.9AI score0.00142EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/03/04 5:46 p.m.53 views

CVE-2026-20052

CVE-2026-20052 affects Cisco Secure Firewall Threat Defense (FTD) when Snort 3 Detection Engine handles SSL packet inspection. A logic error in memory management could be triggered by an unauthenticated remote attacker sending crafted SSL packets over the network, potentially causing the Snort 3 ...

5.8CVSS6AI score0.00413EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/04 5:46 p.m.3 views

CVE-2026-20052 Cisco Secure Firewall Threat Defense Software Snort 3 Memory Management Denial of Service Vulnerability

A vulnerability in the memory management handling for the Snort 3 Detection Engine of Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart. This vulnerability is due to a logic error in memory management...

5.8CVSS6AI score0.00413EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/04 5:2 p.m.3 views

CVE-2026-20005

Multiple Cisco products are affected by a vulnerability in the Snort 3 Detection Engine that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to restart, resulting in an interruption of packet inspection. This vulnerability is due to incomplete parsing of the...

5.8CVSS6AI score0.0049EPSS
Exploits0References1
Tenable Product Security Advisories
Tenable Product Security Advisories
added 2026/02/03 2:56 p.m.8 views

[R1] Tenable Identity Exposure Version 3.77.16 Fixes Multiple Vulnerabilities

R1 Tenable Identity Exposure Version 3.77.16 Fixes Multiple Vulnerabilities Arnie Cabral Tue, 02/03/2026 - 09:56 Tenable Identity Exposure leverages third-party software to help provide underlying functionality. One of the third-party components OpenSSL was found to contain vulnerabilities, and...

5.5AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/15 12:0 a.m.5 views

PT-2025-51206

LINE client for iOS prior to 15.4 allows man-in-the-middle attacks due to improper SSL/TLS certificate validation in an integrated financial SDK. The SDK interfered with the application's network processing, causing server certificate verification to be disabled for a significant portion of netwo...

7.7CVSS6.6AI score0.00168EPSS
Exploits0References2
EUVD
EUVD
added 2025/12/05 12:31 a.m.5 views

EUVD-2025-201294

The WatchGuard Mobile VPN with SSL Client on Windows allows a locally authenticated non-administrative Windows user to escalate their privileges to NT AUTHORITY/SYSTEM on the Windows machine where the VPN Client is installed.This issue affects the Mobile VPN with SSL Client 12.0 up to and includi...

6.3CVSS6.6AI score0.00217EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/24 3:30 p.m.8 views

EUVD-2025-198707

Use after free in endpoint destructors in Redboltz asyncmqtt 10.2.5 allows local users to cause a denial of service via triggering SSL initialization failure that results in incorrect destruction order between iocontext and endpoint objects...

7.5CVSS6AI score0.00197EPSS
Exploits1References3
NVD
NVD
added 2025/11/05 6:15 p.m.9 views

CVE-2025-56231

Tonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validation, which allows attackers to bypass update protections...

9.1CVSS0.00224EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/10/29 12:0 a.m.8 views

PT-2025-44319

Name of the Vulnerable Software and Affected Versions WatchGuard Mobile VPN with SSL client versions prior to 12.11.3 Description A local privilege escalation issue exists in the WatchGuard Mobile VPN with SSL client on Windows. A local user can execute arbitrary commands with elevated privileges...

7.8CVSS7.1AI score0.00312EPSS
Exploits0References5
CNVD
CNVD
added 2025/10/21 12:0 a.m.3 views

Unspecified Vulnerability in HCL AION

HCL AION is an AI lifecycle management platform from HCL India. HCL AION has a security vulnerability which is caused due to missing security attributes in the encrypted session SSL cookie. No details of the vulnerability are provided at this time...

7.5CVSS6.8AI score0.0014EPSS
Exploits0References1
OSV
OSV
added 2025/10/15 2:15 p.m.2 views

CVE-2025-60016

When Diffie-Hellman DH group Elliptic Curve Cryptography ECC Brainpool curves are configured in an SSL profile's Cipher Rule or Cipher Group, and that profile is applied to a virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions...

8.7CVSS5.8AI score0.00414EPSS
Exploits0References1
Rows per page
Query Builder