CVE-2026-44900 | oviva-ag epa4all-client up to 1.2.0 SignedPublicKeysTrustValidatorImpl.isTrusted certificate validation (GHSA-g8r3-5hwf-qp96)

Inserito da Angelo Barbosa | Mag 27, 2026 | CVE

A vulnerability was found in oviva-ag epa4all-client up to 1.2.0 and classified as problematic. The affected element is the function SignedPublicKeysTrustValidatorImpl.isTrusted. Executing a manipulation can lead to improper certificate validation.

This vulnerability is handled as CVE-2026-44900. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2026-44900 | oviva-ag epa4all-client up to 1.2.0 SignedPublicKeysTrustValidatorImpl.isTrusted certificate validation (GHSA-g8r3-5hwf-qp96)

Post correlati

CVE-2026-0737 | gn_themes WP Shortcodes Plugin up to 7.4.7 on WordPress Shortcode su_lightbox src cross site scripting

CVE-2024-27757 | flusity CMS up to 2.45 tools/addons_model.php Gallery Name cross site scripting (GHSA-5843-5m74-7fqh)

CVE-2023-31274 | AVEVA PI Server 2023/up to 2018 SP3 P05 Message Subsystem release of resource (icsa-24-018-01)

CVE-2024-43050 | Qualcomm Snapdragon Compute up to WSA8845H IOCTL Call stack-based overflow