Lucene search
K

60 matches found

ibm
ibm
added 2026/01/29 6:59 a.m.11 views

Security Bulletin: Multiple Vulnerabilities affects IBM Data Studio Client 4.2.0

Summary Security Fix of multiple Vulnerabilities of IBM Data Studio Client 4.2.0 Vulnerability Details CVEID:CVE-2021-2163 DESCRIPTION: An unspecified vulnerability in Java SE related to the Libraries component could allow an unauthenticated attacker to cause no confidentiality impact, high...

7.8CVSS7.2AI score0.05219EPSS
Exploits3Affected Software1
euvd
euvd
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-18516

Malware in sbrugna...

5.9CVSS6AI score0.00477EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-5551

Malware in sbrugna...

5.4CVSS6.4AI score0.00271EPSS
Exploits0References4
euvd
euvd
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-2696

Malware in sbrugna...

5CVSS6.4AI score0.00876EPSS
Exploits0References5
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-7213

Malware in sbrugna...

6.5CVSS6.4AI score0.00757EPSS
Exploits0References7
euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-5673

Malware in sbrugna...

5.8CVSS6.4AI score0.0057EPSS
Exploits1References3
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-5533

Malicious code in bioql PyPI...

6.8CVSS6.8AI score0.00772EPSS
Exploits0References8
redhatcve
redhatcve
added 2025/05/22 3:39 a.m.10 views

CVE-2012-5807

The Authorize.Net eCheck module in Zen Cart does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate...

5.8CVSS6.9AI score0.00566EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 3:39 a.m.7 views

CVE-2012-5801

The PayPal module in PrestaShop does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate, related to use of the...

5.8CVSS7AI score0.00759EPSS
Exploits1References1
redhatcve
redhatcve
added 2025/05/22 3:38 a.m.6 views

CVE-2012-5799

The Canada Post aka CanadaPost module in PrestaShop does not verify that the server hostname matches a domain name in the subject's Common Name CN or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate,...

5.8CVSS7AI score0.00759EPSS
Exploits1References1
nessus
nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2014-0104

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In fence-agents before 4.0.17 does not verify remote SSL certificates in the fenceciscoucs.py script which can potentially allow for man-in-the-middle attackers...

5.9CVSS6.2AI score0.00834EPSS
Exploits0References2
nessus
nessus
added 2025/03/03 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2007-6591

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KDE Konqueror 3.5.5 and 3.95.00, when a user accepts an SSL server certificate on the basis of the CN domain name in the DN field, regards the certificate as al...

4.3CVSS5.7AI score0.00822EPSS
Exploits0References2
nessus
nessus
added 2019/08/12 12:0 a.m.36 views

NewStart CGSL MAIN 5.04 : python Multiple Vulnerabilities (NS-SA-2019-0008)

The remote NewStart CGSL host, running version MAIN 5.04, has python packages installed that are affected by multiple vulnerabilities: - Multiple integer overflows in the imageop module in Python 2.5.1 and earlier allow context-dependent attackers to cause a denial of service application crash an...

7.5CVSS7.7AI score0.14643EPSS
Exploits7References7
attackerkb
attackerkb
added 2014/10/21 10:55 a.m.3 views

CVE-2014-7744

The Musulmanin.com aka com.wSalyafiyailimurdjiya application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.5AI score0.00266EPSS
Exploits0References4
prion
prion
added 2014/10/21 10:55 a.m.14 views

Information disclosure

The news revolution - bahrain aka com.news.revolution.BH application 3.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
prion
prion
added 2014/10/21 10:55 a.m.15 views

Information disclosure

The TicketOne.it aka it.ticketone.mobile.app.Android application 2.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
prion
prion
added 2014/10/20 10:55 a.m.17 views

Information disclosure

The Maccabi Pakal aka com.ideomobile.pakalmaccabi application 1.2 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
prion
prion
added 2014/10/20 10:55 a.m.16 views

Information disclosure

The GES Agri Connect aka com.wAgriConnect application 0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS6.4AI score0.00266EPSS
Exploits0References3Affected Software1
cvelist
cvelist
added 2014/10/20 10:0 a.m.26 views

CVE-2014-7486

The Mitsubishi Road Assist aka com.agero.mitsubishi application 1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.9AI score0.00266EPSS
Exploits0References3
nvd
nvd
added 2014/10/19 10:55 a.m.18 views

CVE-2014-7420

The Just Bureaucracy aka com.magzter.justbureaucracy application 3.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate...

5.4CVSS5.9AI score0.00266EPSS
Exploits0References3
Rows per page
Query Builder