CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-7110

Transifex command-line client before 0.10 does not validate X.509 certificates for data transfer connections, which allows man-in-the-middle attackers to spoof a Transifex server via an arbitrary certificate. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-2073.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.9%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2013-7110

Transifex » Transifex » Version: 0.1

cpe:2.3:a:transifex:transifex:0.1
Transifex » Transifex » Version: 0.2

cpe:2.3:a:transifex:transifex:0.2
Transifex » Transifex » Version: 0.3

cpe:2.3:a:transifex:transifex:0.3
Transifex » Transifex » Version: 0.4

cpe:2.3:a:transifex:transifex:0.4
Transifex » Transifex » Version: 0.5

cpe:2.3:a:transifex:transifex:0.5
Transifex » Transifex » Version: 0.6

cpe:2.3:a:transifex:transifex:0.6
Transifex » Transifex » Version: 0.7

cpe:2.3:a:transifex:transifex:0.7
Transifex » Transifex » Version: 0.8

cpe:2.3:a:transifex:transifex:0.8
Transifex » Transifex » Version: 0.9

cpe:2.3:a:transifex:transifex:0.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-7110

Products

Pricing

Contact Us