9 matches found
CVE-2024-41768
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause an unhandled SSL exception which could leave the connection in an unexpected or insecure state...
EUVD-2024-38905
Malicious code in bioql PyPI...
CVE-2024-41768
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause an unhandled SSL exception which could leave the connection in an unexpected or insecure state...
CVE-2024-41768 IBM Engineering Lifecycle Optimization - Publishing unhandled SLL exception
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause an unhandled SSL exception which could leave the connection in an unexpected or insecure state...
CVE-2024-41768
CVE-2024-41768 affects IBM Engineering Lifecycle Optimization - Publishing, versions 7.0.2 and 7.0.3. The root cause is improper SSL/TLS error handling that can cause an unhandled SSL exception, leaving a connection in an unexpected or insecure state. Public references confirm affected products/v...
CVE-2024-41768 IBM Engineering Lifecycle Optimization - Publishing unhandled SLL exception
IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause an unhandled SSL exception which could leave the connection in an unexpected or insecure state...
Security Bulletin: IBM Engineering Lifecycle Optimization - Publishing could allow a remote attacker to cause an unhandled SSL exception which could leave the connection in an unexpected or insecure state.
Summary TLS/SSL error handling in Java typically throws an java.net.ssl.SSLException or subtypes SSLHandshakeException, SSLKeyException, SSLPeerUnverifiedException or SSLProtocolException when there is a protocol or security problem detected by the SSL subsytem, particularly during SSL handshake ...
GHSA-2CPX-6PQP-WF35 fs2-io skips mTLS client verification
Impact When establishing a server-mode TLSSocket using fs2-io on Node.js, the parameter requestCert = true is ignored, peer certificate verification is skipped, and the connection proceeds. The vulnerability is limited to: 1. fs2-io running on Node.js. The JVM TLS implementation is completely...
Android devices cannot launch apps after updating VDA agent to version 7.11
After upgrading VDA to v7.11; Receiver for Android users cannot launch published Apps or Desktops. The following error message is observed on the Android devices: "The common name on the ID certificate is not what was expected" In addition, the receiver logs shall contain similar stack trace: 09-...