CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Infradead: >> Openconnect >> 5.99 Security Vulnerabilities

CVE-2020-12105

OpenConnect through 8.08 mishandles negative return values from X509_check_ function calls, which might assist attackers in performing man-in-the-middle attacks.

CVSS Score

5.9

EPSS Score

0.002

Published

2020-04-23

CVE-2019-16239

process_http_response in OpenConnect before 8.05 has a Buffer Overflow when a malicious server uses HTTP chunked encoding with crafted chunk sizes.

CVSS Score

9.8

EPSS Score

0.048

Published

2019-09-17

Page 1

Vulnerabilities

Vulnerable Software

Infradead: >> Openconnect >> 5.99 Security Vulnerabilities

Products

Pricing

Contact Us