Lucene search
K

60 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/01/29 6:59 a.m.10 views

Security Bulletin: Multiple Vulnerabilities affects IBM Data Studio Client 4.2.0

Summary Security Fix of multiple Vulnerabilities of IBM Data Studio Client 4.2.0 Vulnerability Details CVEID:CVE-2021-2163 DESCRIPTION: An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, high...

7.8CVSS7.2AI score0.05219EPSS
Exploits3Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-18516

Malware in sbrugna...

5.9CVSS6AI score0.00477EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-5551

Malware in sbrugna...

5.4CVSS6.4AI score0.00271EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-7213

Malware in sbrugna...

6.5CVSS6.4AI score0.00757EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-2696

Malware in sbrugna...

5CVSS6.4AI score0.00876EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-5673

Malware in sbrugna...

5.8CVSS6.4AI score0.0057EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-5533

Malicious code in bioql PyPI...

6.8CVSS6.8AI score0.00772EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/22 3:39 a.m.10 views

CVE-2012-5807

The Authorize.Net eCheck module in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...

5.8CVSS6.9AI score0.00566EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:39 a.m.7 views

CVE-2012-5801

The PayPal module in PrestaShop does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate, related to use of the...

5.8CVSS7AI score0.00759EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:38 a.m.6 views

CVE-2012-5799

The Canada Post aka CanadaPost module in PrestaShop does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate,...

5.8CVSS7AI score0.00759EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2014-0104

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In fence-agents before 4.0.17 does not verify remote SSL certificates in the fenceciscoucs.py script which can potentially allow for man-in-the-middle attackers...

5.9CVSS6.2AI score0.00834EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/03 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2007-6591

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KDE Konqueror 3.5.5 and 3.95.00, when a user accepts an SSL server certificate on the basis of the CN domain name in the DN field, regards the certificate as al...

4.3CVSS5.7AI score0.00822EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.36 views

NewStart CGSL MAIN 5.04 : python Multiple Vulnerabilities (NS-SA-2019-0008)

The remote NewStart CGSL host, running version MAIN 5.04, has python packages installed that are affected by multiple vulnerabilities: - Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service application crash an...

7.5CVSS7.7AI score0.14643EPSS
Exploits7References7
ATTACKERKB
ATTACKERKB
added 2014/10/21 10:55 a.m.3 views

CVE-2014-7744

The Musulmanin.com aka com.wSalyafiyailimurdjiya application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.5AI score0.00266EPSS
Exploits0References4
Prion
Prion
added 2014/10/21 10:55 a.m.14 views

Information disclosure

The news revolution - bahrain aka com.news.revolution.BH application 3.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2014/10/21 10:55 a.m.15 views

Information disclosure

The TicketOne.it aka it.ticketone.mobile.app.Android application 2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2014/10/20 10:55 a.m.17 views

Information disclosure

The Maccabi Pakal aka com.ideomobile.pakalmaccabi application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2014/10/20 10:55 a.m.15 views

Information disclosure

The GES Agri Connect aka com.wAgriConnect application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/10/20 10:0 a.m.24 views

CVE-2014-7486

The Mitsubishi Road Assist aka com.agero.mitsubishi application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
NVD
NVD
added 2014/10/19 10:55 a.m.18 views

CVE-2014-7420

The Just Bureaucracy aka com.magzter.justbureaucracy application 3.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
Rows per page
Query Builder