CWE:

	Topic	Date	Author
Med.	AudioCodes 440HD / 450HD IP Phone 3.1.2.89 Man-In-The-Middle	25.10.2018	Micha Borrmann
Low	ArcServe UDP - HTTP Installation MiTM	06.09.2016	sh4d0wman

---

CVEMAP Search Results

CVE

Details

Description

2024-09-10

CVE-2024-45407

Updating...

Sunshine is a self-hosted game stream host for Moonlight. Clients that experience a MITM attack during the pairing process may inadvertantly allow access to an unintended client rather than failing authentication due to a PIN validation error. The pairing attempt fails due to the incorrect PIN, but the certificate from the forged pairing attempt is incorrectly persisted prior to the completion of the pairing request. This allows access to the certificate belonging to the attacker.

2024-08-14

CVE-2024-27267

Updating...

The Object Request Broker (ORB) in IBM SDK, Java Technology Edition 7.1.0.0 through 7.1.5.18 and 8.0.0.0 through 8.0.8.26 is vulnerable to remote denial of service, caused by a race condition in the management of ORB listener threads. IBM X-Force ID: 284573.

2024-03-03

CVE-2023-47742

Updating...

IBM QRadar Suite Products 1.10.12.0 through 1.10.18.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could disclose sensitive information using man in the middle techniques due to not correctly enforcing all aspects of certificate validation in some circumstances. IBM X-Force ID: 272533.

2024-02-03

CVE-2023-31004

Updating...

IBM Security Access Manager Container (IBM Security Verify Access Appliance 10.0.0.0 through 10.0.6.1 and IBM Security Verify Access Docker 10.0.0.0 through 10.0.6.1) could allow a remote attacker to gain access to the underlying system using man in the middle techniques. IBM X-Force ID: 254765.

2023-05-25

CVE-2023-2885

Updating...

Channel Accessible by Non-Endpoint vulnerability in CBOT Chatbot allows Adversary in the Middle (AiTM).This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.

 

---

Copyright 2024, cxsecurity.com