Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-3614

Malware in sbrugna...

5.8CVSS6.5AI score0.057EPSS
Exploits1References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-3904

Malware in sbrugna...

5CVSS7.9AI score0.01455EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-0749

Malware in sbrugna...

2.6CVSS9.3AI score0.01109EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 10:25 p.m.12 views

CVE-2022-32563

An issue was discovered in Couchbase Sync Gateway 3.x before 3.0.2. Admin credentials are not verified when using X.509 client-certificate authentication from Sync Gateway to Couchbase Server. When Sync Gateway is configured to authenticate with Couchbase Server using X.509 client certificates, t...

9.8CVSS7.5AI score0.00763EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2024/08/19 12:0 a.m.451 views

Ewon Cosy+ / Talk2M Remote Access Solution Improper Authentication

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2024-043 Product: Ewon Cosy+ / Talk2M Remote Access Solution Manufacturer: HMS Industrial Networks AB Affected Versions: N.A. Tested Versions: N.A. Vulnerability Type: Improper Authentication CWE-287 Risk Level: High Solution Statu...

9.1CVSS7.2AI score0.0066EPSS
Exploits2
OSV
OSV
added 2022/06/11 12:0 a.m.13 views

GHSA-9266-J9V3-Q4J5 Couchbase Sync Gateway admin credentials not verified when using X.509 client cert authentication

An issue was discovered in Couchbase Sync Gateway 3.x before 3.0.2. Admin credentials are not verified when using X.509 client-certificate authentication from Sync Gateway to Couchbase Server. When Sync Gateway is configured to authenticate with Couchbase Server using X.509 client certificates, t...

9.8CVSS9.8AI score0.00763EPSS
Exploits0References5
Prion
Prion
added 2022/06/10 12:15 p.m.22 views

Design/Logic Flaw

An issue was discovered in Couchbase Sync Gateway 3.x before 3.0.2. Admin credentials are not verified when using X.509 client-certificate authentication from Sync Gateway to Couchbase Server. When Sync Gateway is configured to authenticate with Couchbase Server using X.509 client certificates, t...

6.8CVSS9.7AI score0.00763EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2014/12/25 11:59 a.m.17 views

CVE-2014-3971

The CmdAuthenticate::authenticateX509 function in db/commands/authenticationcommands.cpp in mongod in MongoDB 2.6.x before 2.6.2 allows remote attackers to cause a denial of service daemon crash by attempting authentication with an invalid X.509 client certificate...

5CVSS7.2AI score0.01455EPSS
Exploits0References3
Cvelist
Cvelist
added 2014/12/25 11:0 a.m.25 views

CVE-2014-3971

The CmdAuthenticate::authenticateX509 function in db/commands/authenticationcommands.cpp in mongod in MongoDB 2.6.x before 2.6.2 allows remote attackers to cause a denial of service daemon crash by attempting authentication with an invalid X.509 client certificate...

7.8AI score0.01455EPSS
Exploits0References2
Prion
Prion
added 2013/10/13 10:20 a.m.15 views

Authentication flaw

The SSL implementation in Cisco Adaptive Security Appliance ASA Software 9.0 before 9.02.6 and 9.1 before 9.12 allows remote attackers to bypass authentication, and obtain VPN access or administrative access, via a crafted X.509 client certificate, aka Bug ID CSCuf52468...

10CVSS7.1AI score0.01652EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2011/08/04 1:0 a.m.24 views

CVE-2011-2701

The ocspcheck function in rlmeaptls.c in FreeRADIUS 2.1.11, when OCSP is enabled, does not properly parse replies from OCSP responders, which allows remote attackers to bypass authentication by using the EAP-TLS protocol with a revoked X.509 client certificate...

6.6AI score0.01847EPSS
Exploits0References11
Prion
Prion
added 2009/12/30 9:30 p.m.65 views

Stack overflow

Multiple stack-based buffer overflows in the CertDecoder::GetName function in src/asn.cpp in TaoCrypt in yaSSL before 1.9.9, as used in mysqld in MySQL 5.0.x before 5.0.90, MySQL 5.1.x before 5.1.43, MySQL 5.5.x through 5.5.0-m2, and other products, allow remote attackers to execute arbitrary cod...

7.5CVSS8AI score0.69552EPSS
Exploits4References36Affected Software5
CVE
CVE
added 2009/12/30 9:0 p.m.163 views

CVE-2009-4484

The CVE-2009-4484 issue affects yaSSL’s CertDecoder::GetName in taocrypt/src/asn.cpp (yaSSL before 1.9.9), which MySQL bundles and uses for SSL handshakes. A crafted X.509 client certificate name can trigger multiple stack-based buffer overflows, enabling remote code execution or memory corruptio...

7.5CVSS7.7AI score0.69552EPSS
Exploits4References36Affected Software1
OpenVAS
OpenVAS
added 2009/11/11 12:0 a.m.26 views

Debian: Security Advisory (DSA-1925-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS6.5AI score0.057EPSS
Exploits1References3
Debian
Debian
added 2009/11/01 11:8 a.m.50 views

[SECURITY] [DSA 1925-1] New proftpd-dfsg packages fix SSL certificate verification weakness

------------------------------------------------------------------------ Debian Security Advisory DSA-1925-1 [email protected] http://www.debian.org/security/ Steffen Joeris October 31, 2009 http://www.debian.org/security/faq -...

5.8CVSS6.1AI score0.057EPSS
Exploits1
Rows per page
Query Builder