Vulnerabilities > Scalyr

DATE CVE VULNERABILITY TITLE RISK
2020-08-27 CVE-2020-24715 Improper Certificate Validation vulnerability in Scalyr Agent
The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, native Python code is used that lacks a comparison of the hostname to commonName and subjectAltName.
network
low complexity
scalyr CWE-295
critical
9.8
2020-08-27 CVE-2020-24714 Improper Certificate Validation vulnerability in Scalyr Agent
The Scalyr Agent before 2.1.10 has Missing SSL Certificate Validation because, in some circumstances, the openssl binary is called without the -verify_hostname option.
network
low complexity
scalyr CWE-295
critical
9.8