Описание
libcloud before 0.4.1 does not verify SSL certificates for HTTPS connections, which allows remote attackers to spoof certificates and bypass intended access restrictions via a man-in-the-middle (MITM) attack.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| libcloud | fixed | 0.5.0-1 | package |
EPSS
Процентиль: 41%
0.00185
Низкий
Связанные уязвимости
ubuntu
больше 14 лет назад
libcloud before 0.4.1 does not verify SSL certificates for HTTPS connections, which allows remote attackers to spoof certificates and bypass intended access restrictions via a man-in-the-middle (MITM) attack.
nvd
больше 14 лет назад
libcloud before 0.4.1 does not verify SSL certificates for HTTPS connections, which allows remote attackers to spoof certificates and bypass intended access restrictions via a man-in-the-middle (MITM) attack.
CVSS3: 7.5
github
больше 3 лет назад
Apache Libcloud does not verify SSL certificates for HTTPS connections
EPSS
Процентиль: 41%
0.00185
Низкий