A vulnerability was found in make-ca up to 1.9 and classified as critical. This issue affects an unknown functionality of the component Certificate Handler. Upgrading to version 1.10 eliminates this vulnerability. Applying a patch is able to eliminate this problem. The bugfix is ready for download at github.com. The best possible mitigation is suggested to be upgrading to the latest version.
make-ca up to 1.9 Certificate certificate validation
- Virtual Patching
- January 11, 2022
- 8:05 am
Contact us to get started
CVE-2022-1840 : Home Clean Services Management System Stored Cross-Site Scripting (XSS)
Description Persistent XSS (or Stored XSS) attack is one of the three major categories of XSS attacks, the others being
CVE-2022-1558 : Multiple Stored Cross-Site Scripting vulnerabilities in WordPress curtain plugin 1.0.2
Description Several Cross-Site Scripting vulnerabilities in the Curtain WordPress plugin. Due to these Cross-Site Scripting vulnerabilities, an attacker would be
CVE-2022-AVAST2 : Self-Defense Bypass via Repairing Function
Description It was noted that there is security checking to prevent some of the Avast processes from loading of undesired/unsigned