Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
squareup okhttp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-0833
A flaw was found in Red Hat's AMQ-Streams, which ships a version of the OKHttp component with an information disclosure flaw via an exception triggered by a header containing an illegal value. This issue could allow an authenticated malicious user to access information outsi...
Squareup Okhttp
Redhat A-mq Streams
NA
CVE-2023-3782
DoS of the OkHttp client when using a BrotliInterceptor and surfing to a malicious web server, or when an attacker can perform MitM to inject a Brotli zip-bomb into an HTTP response
Squareup Okhttp-brotli
4.3
CVSSv2
CVE-2018-20200
CertificatePinner.java in OkHttp 3.x up to and including 3.12.0 allows man-in-the-middle malicious users to bypass certificate pinning by changing SSLContext and the boolean values while hooking the application. NOTE: This id is disputed because some parties don't consider t...
Squareup Okhttp
4.3
CVSSv2
CVE-2016-2402
OkHttp prior to 2.7.4 and 3.x prior to 3.1.2 allows man-in-the-middle malicious users to bypass certificate pinning by sending a certificate chain with a certificate from a non-pinned trusted CA and the pinned certificate.
Squareup Okhttp3 3.0.0
Squareup Okhttp3 3.0.1
Squareup Okhttp3 3.1.0
Squareup Okhttp3 3.1.1
Squareup Okhttp
3 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started