EUVD-2020-0424

Malware in sbrugna...

SUSE CVE-2022-45197

Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker to pose as any server in the eyes of Slixmpp...

UBUNTU-CVE-2022-45197

Slixmpp before 1.8.3 lacks SSL Certificate hostname validation in XMLStream, allowing an attacker to pose as any server in the eyes of Slixmpp...

RHEL 7 : rubygem-em-http-request (RHSA-2021:0937)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2021:0937 advisory. EventMachine based, async HTTP Request client. Security Fixes: missing SSL hostname validation allows MITM CVE-2020-13482 For more details about the...

CVE-2020-11050

In Java-WebSocket less than or equal to 1.4.1, there is an Improper Validation of Certificate with Host Mismatch where WebSocketClient does not perform SSL hostname validation. This has been patched in 1.5.0...

OPENSUSE-SU-2020:0765-1 Security update for imapfilter

This update for imapfilter fixes the following issues: Imapfilter was updated to version 2.6.16 including the following security issue: - CVE-2016-10937: Added Support for SSL hostname validation boo1149931. This update was imported from the openSUSE:Leap:15.1:Update update project...

Security update for imapfilter (moderate)

openSUSE Security Update: Security update for imapfilter Announcement ID: openSUSE-SU-2020:0765-1 Rating: moderate References: 1149931 Cross-References: CVE-2016-10937 Affected Products: openSUSE Backports SLE-15-SP1 An update that fixes one vulnerability is now available. Description: This updat...

openSUSE Security Update : imapfilter (openSUSE-2020-673)

This update for imapfilter fixes the following issues : Imapfilter was updated to version 2.6.16 including the following security issue : - CVE-2016-10937: Added Support for SSL hostname validation boo1149931. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

OPENSUSE-SU-2020:0673-1 Security update for imapfilter

This update for imapfilter fixes the following issues: Imapfilter was updated to version 2.6.16 including the following security issue: - CVE-2016-10937: Added Support for SSL hostname validation boo1149931...

Java-WebSocket Trust Management Issue Vulnerability

Java-WebSocket is a WebSocket client and server implementation written in Java language . A security vulnerability exists in Java-WebSocket 1.4.1 and earlier versions that stems from WebSocketClient failing to validate SSL hostnames. No details of the vulnerability are provided at this time...

CVE-2020-11050 Improper Validation of Certificate with Host Mismatch in Java-WebSocket

In Java-WebSocket less than or equal to 1.4.1, there is an Improper Validation of Certificate with Host Mismatch where WebSocketClient does not perform SSL hostname validation. This has been patched in 1.5.0...

UBUNTU-CVE-2016-10937

IMAPFilter through 2.6.12 does not validate the hostname in an SSL certificate...

Man-in-the-Middle (MitM)

spring-rabbit is vulnerable to man-in-the-middle attacks. The Spring RabbitMQ Java client does not perform SSL hostname validation and accepts SSL certificates as long as they are trusted. This allows attackers to perform man-in-the-middle attacks between the RabbitMQ Java client and server...