exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 4

CVE-2021-0341

почти 5 лет назад

In verifyHostName of OkHostnameVerifier.java, there is a possible way to accept a certificate for the wrong domain due to improperly used crypto. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-171980069

CVSS3: 7.5

EPSS: Низкий

CVE-2021-0341

почти 5 лет назад

In verifyHostName of OkHostnameVerifier.java, there is a possible way to accept a certificate for the wrong domain due to improperly used crypto. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-171980069

CVSS3: 7.5

EPSS: Низкий

GHSA-3cqm-mf7h-prrj

больше 3 лет назад

Square OkHttp can accept the wrong certificate

CVSS3: 7.5

EPSS: Низкий

BDU:2024-00468

около 2 лет назад

Уязвимость компонента Centralized Thirdparty Jars (OkHttp) средства управления доступом Oracle Access Manager, позволяющая нарушителю раскрыть защищаемую информацию

CVSS3: 7.5

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2021-0341 In verifyHostName of OkHostnameVerifier.java, there is a possible way to accept a certificate for the wrong domain due to improperly used crypto. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-171980069	CVSS3: 7.5	1% Низкий	почти 5 лет назад
CVE-2021-0341 In verifyHostName of OkHostnameVerifier.java, there is a possible way to accept a certificate for the wrong domain due to improperly used crypto. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.1 Android-9 Android-10 Android-11Android ID: A-171980069	CVSS3: 7.5	1% Низкий	почти 5 лет назад
GHSA-3cqm-mf7h-prrj Square OkHttp can accept the wrong certificate	CVSS3: 7.5	1% Низкий	больше 3 лет назад
BDU:2024-00468 Уязвимость компонента Centralized Thirdparty Jars (OkHttp) средства управления доступом Oracle Access Manager, позволяющая нарушителю раскрыть защищаемую информацию	CVSS3: 7.5	1% Низкий	около 2 лет назад

Уязвимостей на страницу