exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 12

CVE-2012-5784

больше 13 лет назад

Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional Information SOAP, the Java Message Service implementation in Apache ActiveMQ, and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.

CVSS2: 5.8

EPSS: Низкий

CVE-2012-5784

больше 13 лет назад

CVSS2: 4.3

EPSS: Низкий

CVE-2012-5784

больше 13 лет назад

CVSS2: 5.8

EPSS: Низкий

CVE-2012-5784

больше 13 лет назад

Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Ma ...

CVSS2: 5.8

EPSS: Низкий

GHSA-55w9-c3g2-4rrh

больше 5 лет назад

Man-in-the-middle attack in Apache Axis

EPSS: Низкий

ELSA-2013-0683

почти 13 лет назад

ELSA-2013-0683: axis security update (MODERATE)

EPSS: Низкий

ELSA-2013-0269

почти 13 лет назад

ELSA-2013-0269: axis security update (MODERATE)

EPSS: Низкий

openSUSE-SU-2019:1526-1

больше 6 лет назад

Security update for axis

EPSS: Низкий

openSUSE-SU-2019:1497-1

больше 6 лет назад

Security update for axis

EPSS: Низкий

SUSE-SU-2019:1382-1

больше 6 лет назад

Security update for axis

EPSS: Низкий

SUSE-SU-2019:1373-2

больше 6 лет назад

Security update for axis

EPSS: Низкий

SUSE-SU-2019:1373-1

больше 6 лет назад

Security update for axis

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2012-5784 Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional Information SOAP, the Java Message Service implementation in Apache ActiveMQ, and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.	CVSS2: 5.8	1% Низкий	больше 13 лет назад
CVE-2012-5784 Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional Information SOAP, the Java Message Service implementation in Apache ActiveMQ, and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.	CVSS2: 4.3	1% Низкий	больше 13 лет назад
CVE-2012-5784 Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional Information SOAP, the Java Message Service implementation in Apache ActiveMQ, and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.	CVSS2: 5.8	1% Низкий	больше 13 лет назад
CVE-2012-5784 Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Ma ...	CVSS2: 5.8	1% Низкий	больше 13 лет назад
GHSA-55w9-c3g2-4rrh Man-in-the-middle attack in Apache Axis		1% Низкий	больше 5 лет назад
ELSA-2013-0683 ELSA-2013-0683: axis security update (MODERATE)			почти 13 лет назад
ELSA-2013-0269 ELSA-2013-0269: axis security update (MODERATE)			почти 13 лет назад
openSUSE-SU-2019:1526-1 Security update for axis			больше 6 лет назад
openSUSE-SU-2019:1497-1 Security update for axis			больше 6 лет назад
SUSE-SU-2019:1382-1 Security update for axis			больше 6 лет назад
SUSE-SU-2019:1373-2 Security update for axis			больше 6 лет назад
SUSE-SU-2019:1373-1 Security update for axis			больше 6 лет назад

Уязвимостей на страницу