Lucene search
K

13 matches found

SUSE CVE
SUSE CVE
added 2026/02/19 12:29 a.m.4 views

SUSE CVE-2025-66614

Improper Input Validation vulnerability. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.14, from 10.1.0-M1 through 10.1.49, from 9.0.0-M1 through 9.0.112. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Older EOL...

7.5CVSS5.7AI score0.00235EPSS
Exploits0References16
NVD
NVD
added 2026/02/17 7:21 p.m.9 views

CVE-2025-66614

Improper Input Validation vulnerability. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.14, from 10.1.0-M1 through 10.1.49, from 9.0.0-M1 through 9.0.112. The following versions were EOL at the time the CVE was created but are known to be affected: 8.5.0 through 8.5.100. Older EOL...

9.1CVSS0.00235EPSS
Exploits0References1
Snyk
Snyk
added 2026/02/16 10:0 p.m.5 views

Improper Certificate Validation

Overview org.apache.tomcat:tomcat-coyote is a Tomcat Connectors and HTTP parser. Affected versions of this package are vulnerable to Improper Certificate Validation in the SNI extension, when client certificate authentication relies exclusively on the Connector and is not enforced in the web...

9.1CVSS5.6AI score0.00235EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/16 10:0 p.m.3 views

Improper Certificate Validation

Overview org.apache.tomcat.embed:tomcat-embed-core is a Core Tomcat implementation. Affected versions of this package are vulnerable to Improper Certificate Validation in the SNI extension, when client certificate authentication relies exclusively on the Connector and is not enforced in the web...

9.1CVSS5.6AI score0.00235EPSS
Exploits0References2
Hacker One
Hacker One
added 2024/03/14 2:38 p.m.135 views

curl: CVE-2024-2466: TLS certificate check bypass with mbedTLS

The Curl library had a security vulnerability where the certificate name check was bypassed when connecting to a host via its IP address. This could have potentially introduced spoofing attacks or unauthorized access due to unverified server certificate. The issue affected Curl with MbedTLS from...

6.5CVSS6.4AI score0.06377EPSS
Exploits4
n0where
n0where
added 2017/11/28 4:13 a.m.40 views

Transparent Man-in-the-Middle TLS Proxy: ratched

ratched is a Man-in-the-Middle MitM proxy that specifically intercepts TLS connections. It is intended to be used in conjunction with the Linux iptables REDIRECT target; all connections that should be intercepted can be redirected to the local ratched port. Through the SOORIGINALDST sockopt,...

0.3AI score
Exploits0References1
Prion
Prion
added 2015/11/02 7:59 p.m.20 views

Heap overflow

Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS formerly PolarSSL 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service client crash and possibly execute arbitrary code via a long hostname to the server name indication SNI...

6.8CVSS8.3AI score0.03629EPSS
Exploits0References10Affected Software6
UbuntuCve
UbuntuCve
added 2015/11/02 7:59 p.m.31 views

CVE-2015-5291

Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS formerly PolarSSL 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service client crash and possibly execute arbitrary code via a long hostname to the server name indication SNI...

6.8CVSS7AI score0.03629EPSS
Exploits0References2
Cvelist
Cvelist
added 2015/11/02 7:0 p.m.37 views

CVE-2015-5291

Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS formerly PolarSSL 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service client crash and possibly execute arbitrary code via a long hostname to the server name indication SNI...

8.4AI score0.03629EPSS
Exploits0References10
CVE
CVE
added 2015/11/02 7:0 p.m.83 views

CVE-2015-5291

CVE-2015-5291 and CVE-2015-8036 describe heap-based buffer overflows in PolarSSL (mbed TLS) that affect PolarSSL 1.x before 1.2.17 and mbed TLS 1.3.x before 1.3.14 and 2.x before 2.1.2. The flaw stems from improper boundary handling of the hostname/SNI extension in ClientHello, enabling remote at...

6.8CVSS8.4AI score0.03629EPSS
Exploits0References10Affected Software2
Debian CVE
Debian CVE
added 2015/11/02 7:0 p.m.45 views

CVE-2015-5291

Heap-based buffer overflow in PolarSSL 1.x before 1.2.17 and ARM mbed TLS formerly PolarSSL 1.3.x before 1.3.14 and 2.x before 2.1.2 allows remote SSL servers to cause a denial of service client crash and possibly execute arbitrary code via a long hostname to the server name indication SNI...

6.8CVSS8.5AI score0.03629EPSS
Exploits0
ArchLinux
ArchLinux
added 2015/10/15 12:0 a.m.46 views

mbedtls: arbitrary code execution

When the client creates its ClientHello message, due to insufficient bounds checking it can overflow the heap-based buffer containing the message while writing some extensions. Two extensions in particular could be used by a remote attacker to trigger the overflow: the session ticket extension an...

6.8CVSS2.6AI score0.03629EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2015/09/18 11:4 p.m.16 views

Google to Disable Weak SSLv3 and RC4 Protocols to Boost Internet Security

It is finally time to say GoodBye to the old and insecure Web security protocols. Citing the long history of weaknesses in the Secure Sockets Layer SSL 3.0 cryptographic protocol and the RC4 Cipher Suite, Google plans to disable support for both SSLv3 as well as RC4 stream cipher in its front-end...

6.7AI score
Exploits0
Rows per page
Query Builder