Lucene search
RedhatCVELIST:CVE-2010-4340HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-4340
2022-10-0316:21:04
redhat
www.cve.org
libcloud
ssl
vulnerability
version 0.4.0
libcloud before 0.4.1 does not verify SSL certificates for HTTPS connections, which allows remote attackers to spoof certificates and bypass intended access restrictions via a man-in-the-middle (MITM) attack.
References
bugs.debian.org/cgi-bin/bugreport.cgi?bug=598463
mail-archives.apache.org/mod_mbox/incubator-libcloud/201009.mbox/%3C5860913.463891285776633273.JavaMail.jira%40thor%3E
mail-archives.apache.org/mod_mbox/incubator-libcloud/201011.mbox/browser
wiki.apache.org/incubator/LibcloudSSL
issues.apache.org/jira/browse/LIBCLOUD-55
Related
osv
osv
Apache Libcloud does not verify SSL certificates for HTTPS connections
2022-05-17 05:39:24
PYSEC-2011-24
2011-09-12 12:41:00
nvd
nvd
CVE-2010-4340
2011-09-12 12:41:27
cve
cve
CVE-2010-4340
2022-10-03 16:21:04
github
github
Apache Libcloud does not verify SSL certificates for HTTPS connections
2022-05-17 05:39:24
openvas
openvas
Libcloud SSL Certificates Security Bypass Vulnerability
2011-09-22 00:00:00
Libcloud SSL Certificates Security Bypass Vulnerability
2011-09-22 00:00:00
debiancve
debiancve
CVE-2010-4340
2022-10-03 16:21:04
ubuntucve
ubuntucve
CVE-2010-4340
2011-09-12 00:00:00
prion
prion
Code injection
2011-09-12 12:41:00