18 matches found
EUVD-2021-31832
Malicious code in bioql PyPI...
EUVD-2021-31833
Malicious code in bioql PyPI...
CVE-2021-45036
Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's username and hashed password to spoof the victim's id against the server...
CVE-2021-45036
Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's username and hashed password to spoof the victim's id against the server...
CVE-2021-45036
Velneo vClient 28.1.3 is affected by an improper authentication issue where an attacker who knows a victim’s username and hashed password can spoof the victim’s ID against the server. The CVE-2021-45036 entry notes high impact (confidentiality and integrity) with network attack vector and no user...
CVE-2021-45036 Velneo vClient improper authentication
Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's username and hashed password to spoof the victim's id against the server...
CVE-2021-45036 Velneo vClient improper authentication
Velneo vClient on its 28.1.3 version, could allow an attacker with knowledge of the victims's username and hashed password to spoof the victim's id against the server...
PT-2022-12298 · Velneo · Velneo Vclient
Name of the Vulnerable Software and Affected Versions: Velneo vClient version 28.1.3 Description: The issue allows an attacker with knowledge of the victim's username and hashed password to spoof the victim's id against the server. Recommendations: For Velneo vClient version 28.1.3, consider...
Velneo vClient 授权问题漏洞
Velneo vClient is a complete enterprise application development platform from Velneo. A security vulnerability exists in Velneo vClient version 28.1.3 that stems from a vulnerability that could allow an attacker who knows the victim's username and hashed password to spoof the victim's ID on the...
Velneo vClient Certificate Validation Error Vulnerability
Velneo vClient is a complete enterprise application development platform from Velneo. A certificate validation error vulnerability exists in Velneo vClient version 28.1.3, which stems from a default failure to properly check the authenticity of certificates, and can be exploited by an attacker to...
CVE-2021-45035
Velneo vClient on its 28.1.3 version, does not correctly check the certificate of authenticity by default. This could allow an attacker that has access to the network to perform a MITM attack in order to obtain the user´s credentials...
CVE-2021-45035
Velneo vClient on its 28.1.3 version, does not correctly check the certificate of authenticity by default. This could allow an attacker that has access to the network to perform a MITM attack in order to obtain the user´s credentials...
Design/Logic Flaw
Velneo vClient on its 28.1.3 version, does not correctly check the certificate of authenticity by default. This could allow an attacker that has access to the network to perform a MITM attack in order to obtain the user´s credentials...
CVE-2021-45035 Velneo vClient Improper authentication
Velneo vClient on its 28.1.3 version, does not correctly check the certificate of authenticity by default. This could allow an attacker that has access to the network to perform a MITM attack in order to obtain the user´s credentials...
CVE-2021-45035
Velneo vClient 28.1.3 is affected: it does not correctly check certificate authenticity by default, enabling potential MITM and credential exposure on network access. Root cause: default certificate validation behavior. Impact: credential compromise via MITM. Remediation: update Velneo vClient an...
CVE-2021-45035 Velneo vClient Improper authentication
Velneo vClient on its 28.1.3 version, does not correctly check the certificate of authenticity by default. This could allow an attacker that has access to the network to perform a MITM attack in order to obtain the user´s credentials...
Velneo vClient 信任管理问题漏洞
Velneo vClient is a complete enterprise application development platform from Velneo. A certificate validation error vulnerability exists in Velneo vClient version 28.1.3, which stems from a default failure to properly check the authenticity of certificates, and can be exploited by an attacker to...
PT-2022-12297 · Velneo · Velneo Vclient
Name of the Vulnerable Software and Affected Versions: Velneo vClient version 28.1.3 Description: The issue arises from the default behavior of Velneo vClient, which does not correctly check the certificate of authenticity. This could allow an attacker with network access to perform a...