exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 8

CVE-2015-3455

больше 10 лет назад

Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, and 3.5.x before 3.5.4, when configured with client-first SSL-bump, do not properly validate the domain or hostname fields of X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a valid certificate.

CVSS2: 2.6

EPSS: Низкий

CVE-2015-3455

больше 10 лет назад

Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, and 3.5.x before 3.5.4, when configured with client-first SSL-bump, do not properly validate the domain or hostname fields of X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a valid certificate.

CVSS2: 5.8

EPSS: Низкий

CVE-2015-3455

больше 10 лет назад

Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, and 3.5.x before 3.5.4, when configured with client-first SSL-bump, do not properly validate the domain or hostname fields of X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a valid certificate.

CVSS2: 2.6

EPSS: Низкий

CVE-2015-3455

больше 10 лет назад

Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, a ...

CVSS2: 2.6

EPSS: Низкий

GHSA-5r9c-4h43-4v5m

больше 3 лет назад

Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, and 3.5.x before 3.5.4, when configured with client-first SSL-bump, do not properly validate the domain or hostname fields of X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a valid certificate.

EPSS: Низкий

ELSA-2015-2378

почти 10 лет назад

ELSA-2015-2378: squid security and bug fix update (MODERATE)

EPSS: Низкий

openSUSE-SU-2016:2081-1

около 9 лет назад

Security update for squid

EPSS: Низкий

SUSE-SU-2016:2008-1

около 9 лет назад

Security update for squid

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2015-3455 Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, and 3.5.x before 3.5.4, when configured with client-first SSL-bump, do not properly validate the domain or hostname fields of X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a valid certificate.	CVSS2: 2.6	5% Низкий	больше 10 лет назад
CVE-2015-3455 Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, and 3.5.x before 3.5.4, when configured with client-first SSL-bump, do not properly validate the domain or hostname fields of X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a valid certificate.	CVSS2: 5.8	5% Низкий	больше 10 лет назад
CVE-2015-3455 Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, and 3.5.x before 3.5.4, when configured with client-first SSL-bump, do not properly validate the domain or hostname fields of X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a valid certificate.	CVSS2: 2.6	5% Низкий	больше 10 лет назад
CVE-2015-3455 Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, a ...	CVSS2: 2.6	5% Низкий	больше 10 лет назад
GHSA-5r9c-4h43-4v5m Squid 3.2.x before 3.2.14, 3.3.x before 3.3.14, 3.4.x before 3.4.13, and 3.5.x before 3.5.4, when configured with client-first SSL-bump, do not properly validate the domain or hostname fields of X.509 certificates, which allows man-in-the-middle attackers to spoof SSL servers via a valid certificate.		5% Низкий	больше 3 лет назад
ELSA-2015-2378 ELSA-2015-2378: squid security and bug fix update (MODERATE)			почти 10 лет назад
openSUSE-SU-2016:2081-1 Security update for squid			около 9 лет назад
SUSE-SU-2016:2008-1 Security update for squid			около 9 лет назад

Уязвимостей на страницу