GHSA-4qx9-9vv8-76v6

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

The Bzrtp library (aka libbzrtp) 1.0.x before 1.0.4 allows man-in-the-middle attackers to conduct spoofing attacks by leveraging a missing HVI check on DHPart2 packet reception.

Ссылки

EPSS

Процентиль: 91%

0.07377

Низкий

7.5 High

CVSS3

CVE ID

CVE-2016-6271

Связанные уязвимости

CVE-2016-6271

CVSS3: 7.5

ubuntu

около 9 лет назад

The Bzrtp library (aka libbzrtp) 1.0.x before 1.0.4 allows man-in-the-middle attackers to conduct spoofing attacks by leveraging a missing HVI check on DHPart2 packet reception.

CVE-2016-6271

CVSS3: 7.5

nvd

около 9 лет назад

The Bzrtp library (aka libbzrtp) 1.0.x before 1.0.4 allows man-in-the-middle attackers to conduct spoofing attacks by leveraging a missing HVI check on DHPart2 packet reception.

CVE-2016-6271

CVSS3: 7.5

debian

около 9 лет назад

The Bzrtp library (aka libbzrtp) 1.0.x before 1.0.4 allows man-in-the- ...

openSUSE-SU-2017:0363-1

suse-cvrf

около 9 лет назад

Security update for bzrtp

EPSS

Процентиль: 91%

0.07377

Низкий

7.5 High

CVSS3

CVE ID

CVE-2016-6271