all InfoSec news
CVE-2023-5422 (otrs)
Oct. 16, 2023, 9:15 a.m. |
National Vulnerability Database web.nvd.nist.gov
SSL_get_verify_result() function is not used the certificated is trusted always and it can not be ensured that the certificate
satisfies all necessary security requirements.
This could allow an
attacker to use an invalid certificate to claim to be a trusted host,
use expired certificates, or conduct other attacks that could be
detected if …
attacker certificate communication cve e-mail fetch function functions imap mail openssl requirements security security requirements smtp ssl tls
More from web.nvd.nist.gov / National Vulnerability Database
CVE-2023-21380 (android)
7 months ago |
web.nvd.nist.gov
CVE-2023-21381 (android)
7 months ago |
web.nvd.nist.gov
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC