Produkt Libcloud (...) - CVEMAP.ORG

Podatności dla 'Libcloud'

2014-01-07

CVE-2013-6480

CWE-200

Libcloud 0.12.3 through 0.13.2 does not set the scrub_data parameter for the destroy DigitalOcean API, which allows local users to obtain sensitive information by leveraging a new VM.

2012-11-04

CVE-2012-3446

CWE-20

Apache Libcloud before 0.11.1 uses an incorrect regular expression during verification of whether the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via a crafted certificate.

2011-09-12

CVE-2010-4340

CWE-264

libcloud before 0.4.1 does not verify SSL certificates for HTTPS connections, which allows remote attackers to spoof certificates and bypass intended access restrictions via a man-in-the-middle (MITM) attack.

>>> Vendor: Apache 247 Produkty

Mod auth radius

Coyote http connector

Open for business project

Tomcat jk web server connector

Myfaces tomahawk

Apache webserver

Apache http server

Portable runtime

Apache commons daemon

Http server2.0a1

Http server2.0a2

Http server2.0a3

Http server2.0a4

Http server2.0a5

Http server2.0a6

Http server2.0a7

Http server2.0a8

Http server2.0a9

Commons-compress

Org.apache.sling.servlets.post

Commons-httpclient

Commons fileupload

Struts2-showcase

Xml security for c++

Xml security for java

Sling auth core component

Httpasyncclient

Mod auth mellon

Santuario xml security for java

Standard taglibs

Zobacz wszystkie produkty dla producenta Apache

Copyright 2024, cxsecurity.com