Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Canonical Subscribe
Filtered by product Telepathy-idle
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-6746 1 Canonical 2 Telepathy-idle, Ubuntu Linux 2013-06-20 5.8 MEDIUM N/A
telepathy-idle before 0.1.15 does not verify (1) that the issuer is a trusted CA, (2) that the server hostname matches a domain name in the subject's Common Name (CN), or (3) the expiration date of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.