1+ vulnerabilities with CVSS scores, EPSS exploit predictions, and CISA KEV status. Updated daily.
1 results for "CWE-326"
CWE-326 in BOSH allows a local attacker to steal Basic-auth credentials or redirect UAA token requests via MITM. HttpRequestHelper#create_async_endpoint and #send_http_get_request_synchronous hard-code OpenSSL::SSL::VERIFY_NONE, enabling an …
Free website and port scanning — find vulnerabilities before attackers do.