Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2022-5199

Malicious code in bioql PyPI...

5.9CVSS5.9AI score0.00844EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2024/03/22 12:0 a.m.11 views

FreeBSD : security/shibboleth-idp -- CAS service SSRF (7a7129ef-e790-11ee-a1c0-0050569f0b83)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 7a7129ef-e790-11ee-a1c0-0050569f0b83 advisory. - Shibboleth Developers report: The Identity Provider's CAS support relies on a function in the Spring...

5.6AI score
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 5:28 a.m.6 views

SUSE CVE-2014-3603

The 1 HttpResource and 2 FileBackedHttpResource implementations in Shibboleth Identity Provider IdP before 2.4.1 and OpenSAML Java 2.6.2 do not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows...

5.9CVSS6.9AI score0.00844EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2019/04/04 2:29 p.m.27 views

CVE-2014-3603

The 1 HttpResource and 2 FileBackedHttpResource implementations in Shibboleth Identity Provider IdP before 2.4.1 and OpenSAML Java 2.6.2 do not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows...

5.9CVSS6.5AI score0.00844EPSS
Exploits1References3
NVD
NVD
added 2019/04/04 2:29 p.m.21 views

CVE-2014-3603

The 1 HttpResource and 2 FileBackedHttpResource implementations in Shibboleth Identity Provider IdP before 2.4.1 and OpenSAML Java 2.6.2 do not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows...

5.9CVSS5.6AI score0.00844EPSS
Exploits1References3
Rows per page
Query Builder