Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Cyberduck Subscribe
Filtered by product Cyberduck
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2014-2845 2 Cyberduck, Microsoft 2 Cyberduck, Windows 2019-12-11 4.3 MEDIUM 5.9 MEDIUM
Cyberduck before 4.4.4 on Windows does not properly validate X.509 certificate chains, which allows man-in-the-middle attackers to spoof FTP-SSL servers via a certificate issued by an arbitrary root Certification Authority.