VDB

GCVE-110-MAGEIA-2014-348

GCVE-110-MAGEIA-2014-348
Advisory Published
Vulnetix · Advisory published August 25, 2014
Updated jakarta-commons-httpclient and httpcomponents-client packages fix security vulnerabilities: The Jakarta Commons HttpClient component may be susceptible to a 'Man in the Middle Attack' due to a flaw in the default hostname verification during SSL/TLS when a specially crafted server side certificate is used (CVE-2012-6153). The Apache httpcomponents HttpClient component may be susceptible to a 'Man in the Middle Attack' due to a flaw in the default hostname verification during SSL/TLS when a specially crafted server side certificate is used (CVE-2014-3577).

Affected Products

VendorProductVersionsPlatforms
Mageiahttpcomponents-client0 (affected), 4.3.5-1.mga4 (unaffected)
Mageiajakarta-commons-httpclient0 (affected), 3.1-11.1.mga4 (unaffected)

Browse GCVE Records

73,118 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›