CVE-2024-12174

LOW Year: 2024
CVSS v3 Score
2.7
Low
Weakness Type
CWE-295
View all →

Vulnerability Description

An Improper Certificate Validation vulnerability exists in Tenable Security Center where an authenticated, privileged attacker could intercept email messages sent from Security Center via a rogue SMTP server.

Related Vulnerabilities

CVE-2024-29733

LOW
CVSS:2.7(Low)

Improper Certificate Validation vulnerability in Apache Airflow FTP Provider. The FTP hook lacks complete certificate validation in FTP_TLS connections, which can potentially be leveraged. Implementin...

CWE-2952024

CVE-2024-42186

LOW
CVSS:2.8(Low)

BigFix Patch Download Plug-ins are affected by an insecure protocol support. The application can allow improper handling of SSL certificates validation.

CWE-2952024

CVE-2024-4786

LOW
CVSS:2.8(Low)

An improper validation vulnerability was reported in the Lenovo Tab K10 that could allow a specially crafted application to keep the device on.

CWE-2952024

CVE-2021-22218

LOW
CVSS:2.6(Low)

All versions of GitLab CE/EE starting from 12.8 before 13.10.5, all versions starting from 13.11 before 13.11.5, and all versions starting from 13.12 before 13.12.2 were affected by an issue in the ha...

CWE-2952021

CVE-2021-20435

LOW
CVSS:2.5(Low)

IBM Security Verify Bridge 1.0.5.0 does not properly validate a certificate which could allow a local attacker to obtain sensitive information that could aid in further attacks against the system. IBM...

CWE-2952021

CVE-2009-3552

LOW
CVSS:3.1(Low)

In RHEV-M VDC 2.2.0, it was found that the SSL certificate was not verified when using the client-side Red Hat Enterprise Virtualization Manager interface (a Windows Presentation Foundation (WPF) XAML...

CWE-2952009