Количество 3
Количество 3
CVE-2011-5239
CiviCRM 4.0.5 and 4.1.1 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
CVE-2011-5239
CiviCRM 4.0.5 and 4.1.1 does not verify that the server hostname match ...
GHSA-33p2-5mfj-r94r
CiviCRM 4.0.5 and 4.1.1 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2011-5239 CiviCRM 4.0.5 and 4.1.1 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate. | CVSS2: 5.8 | 0% Низкий | больше 13 лет назад |
| CVE-2011-5239 CiviCRM 4.0.5 and 4.1.1 does not verify that the server hostname match ... | CVSS2: 5.8 | 0% Низкий | больше 13 лет назад |
| GHSA-33p2-5mfj-r94r CiviCRM 4.0.5 and 4.1.1 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate. | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу