exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 12

CVE-2012-5784

почти 13 лет назад

Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional Information SOAP, the Java Message Service implementation in Apache ActiveMQ, and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.

CVSS2: 5.8

EPSS: Низкий

CVE-2012-5784

почти 13 лет назад

CVSS2: 4.3

EPSS: Низкий

CVE-2012-5784

почти 13 лет назад

CVSS2: 5.8

EPSS: Низкий

CVE-2012-5784

почти 13 лет назад

Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Ma ...

CVSS2: 5.8

EPSS: Низкий

GHSA-55w9-c3g2-4rrh

почти 5 лет назад

Man-in-the-middle attack in Apache Axis

EPSS: Низкий

ELSA-2013-0683

больше 12 лет назад

ELSA-2013-0683: axis security update (MODERATE)

EPSS: Низкий

ELSA-2013-0269

больше 12 лет назад

ELSA-2013-0269: axis security update (MODERATE)

EPSS: Низкий

openSUSE-SU-2019:1526-1

около 6 лет назад

Security update for axis

EPSS: Низкий

openSUSE-SU-2019:1497-1

около 6 лет назад

Security update for axis

EPSS: Низкий

SUSE-SU-2019:1382-1

около 6 лет назад

Security update for axis

EPSS: Низкий

SUSE-SU-2019:1373-2

почти 6 лет назад

Security update for axis

EPSS: Низкий

SUSE-SU-2019:1373-1

около 6 лет назад

Security update for axis

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2012-5784 Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional Information SOAP, the Java Message Service implementation in Apache ActiveMQ, and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.	CVSS2: 5.8	1% Низкий	почти 13 лет назад
CVE-2012-5784 Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional Information SOAP, the Java Message Service implementation in Apache ActiveMQ, and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.	CVSS2: 4.3	1% Низкий	почти 13 лет назад
CVE-2012-5784 Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional Information SOAP, the Java Message Service implementation in Apache ActiveMQ, and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.	CVSS2: 5.8	1% Низкий	почти 13 лет назад
CVE-2012-5784 Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Ma ...	CVSS2: 5.8	1% Низкий	почти 13 лет назад
GHSA-55w9-c3g2-4rrh Man-in-the-middle attack in Apache Axis		1% Низкий	почти 5 лет назад
ELSA-2013-0683 ELSA-2013-0683: axis security update (MODERATE)			больше 12 лет назад
ELSA-2013-0269 ELSA-2013-0269: axis security update (MODERATE)			больше 12 лет назад
openSUSE-SU-2019:1526-1 Security update for axis			около 6 лет назад
openSUSE-SU-2019:1497-1 Security update for axis			около 6 лет назад
SUSE-SU-2019:1382-1 Security update for axis			около 6 лет назад
SUSE-SU-2019:1373-2 Security update for axis			почти 6 лет назад
SUSE-SU-2019:1373-1 Security update for axis			около 6 лет назад

Уязвимостей на страницу