Security News > 2015 > July > OpenSSL Patches Critical Certificate Validation Vulnerability (Threatpost)

OpenSSL Patches Critical Certificate Validation Vulnerability (Threatpost)

2015-07-09 13:44

A high-severity bug in OpenSSL was disclosed today, and it affects only organizations that installed an update released in June, and allows anyone with an untrusted TLS certificate to become a CA.

News URL

http://threatpost.com/openssl-patches-critical-certificate-validation-vulnerability/113703

#critical #vulnerability #certificate #threatpost #openssl

Related news

Hackers target critical zero-day vulnerability in PTZ cameras (source)
Cisco Releases Patch for Critical URWB Vulnerability in Industrial Wireless Systems (source)
Critical vulnerability in Cisco industrial wireless access points fixed (CVE-2024-20418) (source)
CISA Alerts to Active Exploitation of Critical Palo Alto Networks Vulnerability (source)
Urgent: Critical WordPress Plugin Vulnerability Exposes Over 4 Million Sites (source)
Critical SailPoint IdentityIQ Vulnerability Exposes Files to Unauthorized Access (source)
Veeam Issues Patch for Critical RCE Vulnerability in Service Provider Console (source)
PoC exploit for critical WhatsUp Gold RCE vulnerability released (CVE-2024-8785) (source)
Critical OpenWrt Vulnerability Exposes Devices to Malicious Firmware Injection (source)
BeyondTrust Issues Urgent Patch for Critical Vulnerability in PRA and RS Products (source)

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Openssl		1	7	48	51	13	119

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.