CVE-2010-4340

Apache Libcloud < 0.4.1 - SSL Certificate Validation Bypass

Title source: llm
STIX 2.1

Description

libcloud before 0.4.1 does not verify SSL certificates for HTTPS connections, which allows remote attackers to spoof certificates and bypass intended access restrictions via a man-in-the-middle (MITM) attack.

References (5)

Core 5

Scores

EPSS 0.0138
EPSS Percentile 69.0%

Details

CWE
CWE-264
Status published
Products (5)
apache/libcloud 0.2.0
apache/libcloud 0.3.0
apache/libcloud 0.3.1
apache/libcloud < 0.4.0
pypi/apache-libcloud 0 - 0.4.0PyPI
Published Sep 12, 2011
Tracked Since Feb 18, 2026