exploitDog

GHSA-6g5p-c2f9-9435

Опубликовано: 21 авг. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.1

Описание

A malicious client can bypass the client certificate trust check of an opc.https server when the server endpoint is configured to allow only secure communication.

A malicious client can bypass the client certificate trust check of an opc.https server when the server endpoint is configured to allow only secure communication.

Ссылки

EPSS

Процентиль: 7%

0.00027

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2025-7390

CVSS3: 9.1

nvd

6 месяцев назад

A malicious client can bypass the client certificate trust check of an opc.https server when the server endpoint is configured to allow only secure communication.

EPSS

Процентиль: 7%

0.00027

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-295