man-in-the-middle vulnerabilities and exploits

(subscribe to this query)

7.4

CVSSv3

Man-In-The-Middle vulnerability in Micro Focus Project and Portfolio Management Center, version 9.32. This vulnerability could be exploited to allow a Man-in-the-middle attack....

Microfocus Project And Portfolio Management 9.32

3.7

CVSSv3

MikroTik Winbox 3.20 and below is vulnerable to man in the middle attacks. A man in the middle can downgrade the client's authentication protocol and recover the user's username and MD5 hashed password....

Mikrotik Routeros Mikrotik Winbox

5.9

CVSSv3

Man-in-the-middle vulnerability in Micro Focus Self Service Password Reset, affecting all versions prior to 4.4.0.4. The vulnerability could exploit invalid certificate validation and may result in a man-in-the-middle attack....

Microfocus Netiq Self Service Password Reset Microfocus Netiq Self Service Password Reset 4.4

NA

libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers....

Libgadu Libgadu

5.9

CVSSv3

In PHP versions 7.3.x below 7.3.29, 7.4.x below 7.4.21 and 8.0.x below 8.0.8, when using Firebird PDO driver extension, a malicious database server could cause crashes in various database functions, such as getAttribute(), execute(), fetch() and others by returning invalid...

Php Php Netapp Clustered Data Ontap -1 Github repository available

5.9

CVSSv3

An information disclosure vulnerability exists due to the hardcoded TLS key of reolink RLC-410W v3.0.0.136_20121102. A specially-crafted man-in-the-middle attack can lead to a disclosure of sensitive information. An attacker can perform a man-in-the-middle attack to trigger this...

Reolink Rlc-410w Firmware 3.0.0.136 20121102

8.1

CVSSv3

LINE for Windows before 4.8.3 allows man-in-the-middle attackers to execute arbitrary code....

Linecorp Line

8.1

An information disclosure vulnerability exists in the XFINDER functionality of Abode Systems, Inc. iota All-In-One Security Kit 6.9X and 6.9Z. A specially-crafted man-in-the-middle attack can lead to increased privileges. An attacker can perform a man-in-the-middle attack to...

Goabode Iota All-in-one Security Kit Firmware 6.9z Goabode Iota All-in-one Security Kit Firmware 6.9x1 Github repository available

5.9

CVSSv3

Mutt before 1.14.3 allows an IMAP fcc/postpone man-in-the-middle attack via a PREAUTH response....

Mutt Mutt Canonical Ubuntu Linux 18.04 Canonical Ubuntu Linux 19.10 Canonical Ubuntu Linux 20.04 Canonical Ubuntu Linux 16.04 Canonical Ubuntu Linux 12.04 Debian Debian Linux 8.0 Debian Debian Linux 9.0 Debian Debian Linux 10.0 Opensuse Leap 15.1 Opensuse Leap 15.2

5.9

CVSSv3

An information disclosure vulnerability exists in the Web Server functionality of Sealevel Systems, Inc. SeaConnect 370W v1.3.34. A specially-crafted man-in-the-middle attack can lead to a disclosure of sensitive information. An attacker can perform a man-in-the-middle attack to...

Sealevel Seaconnect 370w Firmware 1.3.34

Get Started

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook