Lucene search
K

6 matches found

OSV
OSV
added 2026/06/18 1:52 p.m.5 views

GHSA-G5H5-M4HM-XJRR ZITADEL: Missing Token Audience Validation (`aud`) in JWT IdP Provider

Summary An authentication bypass vulnerability was discovered in ZITADEL's external JWT Identity Provider IdP implementation. When validating JSON Web Tokens JWTs from an external provider, ZITADEL properly checks the token's cryptographic signature and issuer iss, but it fails to validate the...

4.2CVSS5.7AI score
Exploits0References5
Vulnrichment
Vulnrichment
added 2023/02/24 2:53 p.m.3 views

CVE-2022-4203 X.509 Name Constraints Read Buffer Overflow

A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate...

6.5AI score0.01481EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2023/02/07 5:27 p.m.58 views

CVE-2022-4203

A flaw was found in Open SSL. A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification, and requires either a CA to have signed the malicious certificate or for the...

4.9CVSS6.3AI score0.01481EPSS
Exploits0References4
OpenSSL
OpenSSL
added 2023/02/07 12:0 a.m.76 views

Vulnerability in OpenSSL - X.509 Name Constraints Read Buffer Overflow

A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or for the application to continue certificate...

6.7AI score0.01481EPSS
Exploits0Affected Software1
NVD
NVD
added 2022/11/01 6:15 p.m.22 views

CVE-2022-3786

A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed a malicious certificate or for an application to continue certificate...

7.5CVSS0.92488EPSS
Exploits2References5
BDU FSTEC
BDU FSTEC
added 2022/08/04 12:0 a.m.5 views

The vulnerability of the LibreOffice office software package arises from improper verification of the certificate authenticity, allowing a perpetrator to execute arbitrary code.

The vulnerability of the LibreOffice office software package is related to incorrect verification of the certificate’s authenticity. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code by creating a certificate with a random serial number and an issuer...

10CVSS7.9AI score0.00998EPSS
Exploits0References8Affected Software4
Rows per page
Query Builder