JXcore JXM Improper Certificate Validation Vulnerability

Vulnerability

A vulnerability exists in JXcore JXM master branch, where the application improperly validates TLS/SSL certificates. This issue arises because 'rejectUnauthorized' is set to false in HTTPS request options when 'jx_obj.IsSecure' is true. As a result, man-in-the-middle attackers could potentially spoof servers and intercept sensitive data.

Impact

Exploitation of this vulnerability allows for man-in-the-middle attacks, where an attacker can intercept and manipulate communications between the client and server, potentially leading to the exposure of sensitive information.

Added: Feb 23, 2026, 4:32 PM

Updated: Feb 23, 2026, 9:30 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.1

remediation

0.0

relevance

3.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

4.1

remediation

0.0

relevance

3.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

JXcore JXM Improper Certificate Validation Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating