commons-httpclient:commons-httpclient@2.0alpha1 vulnerabilities
-
latest version
20020423
-
first published
19 years ago
-
latest version published
19 years ago
-
licenses detected
- [1.0,20020423)
-
package manager
Direct Vulnerabilities
Known vulnerabilities in the commons-httpclient:commons-httpclient package. This does not include vulnerabilities belonging to this package’s dependencies.
Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.Vulnerability | Vulnerable Version |
---|---|
commons-httpclient:commons-httpclient is a HttpClient component of the Apache HttpComponents project. Affected versions of this package are vulnerable to Man-in-the-Middle (MitM) due to not verifing the requesting server's hostname agains existing domain names in the SSL Certificate. The NOTE: this issue exists because of an incomplete fix for CVE-2012-5783. How to fix Man-in-the-Middle (MitM)? There is no fixed version for |
[0,)
|
commons-httpclient:commons-httpclient is a HttpClient component of the Apache HttpComponents project. Affected versions of this package are vulnerable to Improper Certificate Validation due to not verifying that the requesting server hostname matches a domain name in the subject's NOTE: This plugin has been deprecated, but a fix has been released in version 3.1-jenkins-3 on a special Jenkins fork of the project. How to fix Improper Certificate Validation? Upgrade |
[,3.1-jenkins-3)
|