CVE-2018-10377

Опубликовано: 17 июн. 2018

Источник: debian

EPSS Низкий

Описание

PortSwigger Burp Suite before 1.7.34 has Improper Certificate Validation of the Collaborator server certificate, which might allow man-in-the-middle attackers to obtain interaction data.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
burpsuite	itp			package

EPSS

Процентиль: 34%

0.00135

Низкий

Связанные уязвимости

CVE-2018-10377

CVSS3: 5.9

nvd

больше 7 лет назад

PortSwigger Burp Suite before 1.7.34 has Improper Certificate Validation of the Collaborator server certificate, which might allow man-in-the-middle attackers to obtain interaction data.

GHSA-fwwq-w4x9-pp7r

CVSS3: 5.9

github

больше 3 лет назад

PortSwigger Burp Suite before 1.7.34 has Improper Certificate Validation of the Collaborator server certificate, which might allow man-in-the-middle attackers to obtain interaction data.

EPSS

Процентиль: 34%

0.00135

Низкий