The TLS protocol, and the SSL protocol 3.0 and possibly earlier, as used in Microsoft Internet …

The MS-SAMR and MS-LSAD protocol implementations in Samba 3.x and 4.x before 4.2.11, 4.3.x befo…

BouncyCastle TLS prior to version 1.0.3, when configured to use the JCE (Java Cryptography Exte…

The Erlang otp TLS server answers with different TLS alerts to different error types in the RSA…

It was found that samba before 4.4.16, 4.5.x before 4.5.14, and 4.6.x before 4.6.8 did not enfo…

Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2 does not require SM…

The bundled LDAP client library in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4…

The NTLMSSP authentication implementation in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.…

A flaw was found in the way samba client before samba 4.4.16, samba 4.5.14 and samba 4.6.8 used…

The Kubelet and kube-proxy components in versions 1.1.0-1.16.10, 1.17.0-1.17.6, and 1.18.0-1.18…

curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy …

An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the …

The SMB1 protocol implementation in Samba 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x befo…

CertificatePinner.java in OkHttp 3.x through 3.12.0 allows man-in-the-middle attackers to bypas…

A vulnerability was found in all versions of containernetworking/plugins before version 0.8.6, …

rkhunter versions before 1.4.4 are vulnerable to file download over insecure channel when doing…

The DBD::mysql module through 4.043 for Perl uses the mysql_ssl=1 setting to mean that SSL is o…

When an authenticated password change request takes place, this vulnerability could allow the a…

selenium-chromedriver is a simple utility for downloading the Selenium Webdriver for Google Chr…

Docker before 1.3.1 and docker-py before 0.5.3 fall back to HTTP when the HTTPS connection to t…

healthcenter - IBM Monitoring and Diagnostic Tools health Center agent healthcenter downloads b…

It was discovered that the fix for CVE-2017-12151 was not properly shipped in erratum RHSA-2017…

It was discovered that the fix for CVE-2017-12150 was not properly shipped in erratum RHSA-2017…

The Red Hat docker package before 1.5.0-28, when using the --add-registry option, falls back to…

A Man-in-the-Middle issue was discovered in General Motors (GM) and Shanghai OnStar (SOS) SOS i…

When an SRX Series device is configured to use HTTP/HTTPS pass-through authentication services,…

Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth…

SMTP MITM refers to a malicious actor setting up an SMTP proxy server between the UniFi Control…

A vulnerability found in EdgeMAX EdgeRouter V2.0.9 and earlier could allow a malicious actor to…

In Eclipse Buildship versions prior to 3.1.1, the build files indicate that this project is res…

Live-migrated instances are briefly able to inspect traffic for other instances on the same hyp…

MikroTik Winbox 3.20 and below is vulnerable to man in the middle attacks. A man in the middle …

A vulnerability has been identified in LOGO! 8 BM (incl. SIPLUS variants) (All versions < V8.3)…

An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requir…

Pivotal Apps Manager Release, versions 665.0.x prior to 665.0.28, versions 666.0.x prior to 666…

In all released versions of Eclipse Equinox, at least until version 4.21 (September 2021), inst…

engine.io-client is the client for engine.io, the implementation of a transport-based cross-bro…

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10…

An authentication bypass vulnerability exists in the process_msg() function of the home_securit…

The remote-viewer in Red Hat Enterprise Virtualization Manager (RHEV-M) before 3.3, when using …