Apache Commons HttpClient 3.x does not verify server hostname in SSL connections, allowing man-in-the-middle attacks with valid certificates
Reporter | Title | Published | Views | Family All 199 |
---|---|---|---|---|
![]() | Amazon Linux: Security Advisory (ALAS-2014-410) | 8 Sep 201500:00 | – | openvas |
![]() | Fedora Update for jakarta-commons-httpclient FEDORA-2014-9539 | 27 Aug 201400:00 | – | openvas |
![]() | Debian: Security Advisory (DLA-222-1) | 8 Mar 202300:00 | – | openvas |
![]() | Fedora Update for jakarta-commons-httpclient FEDORA-2014-9581 | 27 Aug 201400:00 | – | openvas |
![]() | Ubuntu: Security Advisory (USN-2769-1) | 15 Oct 201500:00 | – | openvas |
![]() | CentOS Update for jakarta-commons-httpclient CESA-2014:1166 centos6 | 9 Sep 201400:00 | – | openvas |
![]() | RedHat Update for jakarta-commons-httpclient RHSA-2014:1166-01 | 9 Sep 201400:00 | – | openvas |
![]() | CentOS Update for jakarta-commons-httpclient CESA-2014:1166 centos7 | 10 Sep 201400:00 | – | openvas |
![]() | CentOS Update for httpcomponents-client CESA-2014:1146 centos7 | 10 Sep 201400:00 | – | openvas |
![]() | Mageia: Security Advisory (MGASA-2014-0347) | 28 Jan 202200:00 | – | openvas |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo