CVE-2023-22372

MEDIUM Year: 2023
CVSS v3 Score
5.9
Medium
Weakness Type
CWE-924
View all →

Vulnerability Description

In the pre connection stage, an improper enforcement of message integrity vulnerability exists in BIG-IP Edge Client for Windows and Mac OS. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Related Vulnerabilities

CVE-2015-0897

MEDIUM
CVSS:5.9(Medium)

LINE for Android version 5.0.2 and earlier and LINE for iOS version 5.0.0 and earlier are vulnerable to MITM (man-in-the-middle) attack since the application allows non-SSL/TLS communications. As a re...

CWE-9242015

CVE-2015-2968

MEDIUM
CVSS:5.9(Medium)

LINE@ for Android version 1.0.0 and LINE@ for iOS version 1.0.0 are vulnerable to MITM (man-in-the-middle) attack since the application allows non-SSL/TLS communications. As a result, any API may be i...

CWE-9242015

CVE-2021-21390

MEDIUM
CVSS:5.9(Medium)

MinIO is an open-source high performance object storage service and it is API compatible with Amazon S3 cloud storage service. In MinIO before version RELEASE.2021-03-17T02-33-02Z, there is a vulnerab...

CWE-9242021

CVE-2023-43297

MEDIUM
CVSS:5.4(Medium)

An issue in animal-art-lab v13.6.1 allows attackers to send crafted notifications via leakage of the channel access token.

CWE-9242023

CVE-2018-14526

MEDIUM
CVSS:6.5(Medium)

An issue was discovered in rsn_supp/wpa.c in wpa_supplicant 2.0 through 2.6. Under certain conditions, the integrity of EAPOL-Key messages is not checked, leading to a decryption oracle. An attacker w...

CWE-9242018

CVE-2019-20844

MEDIUM
CVSS:6.5(Medium)

An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. An attacker can spoof a direct-message channel by changing the type of a channel.

CWE-9242019