exploitDog

GHSA-6mv5-ch6p-7g97

Опубликовано: 05 нояб. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 9.1

Описание

Tonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validation, which allows attackers to bypass update protections.

Tonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validation, which allows attackers to bypass update protections.

Ссылки

EPSS

Процентиль: 9%

0.00033

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2025-56231

CVSS3: 9.1

nvd

3 месяца назад

Tonec Internet Download Manager 6.42.41.1 and earlier suffers from Missing SSL Certificate Validation, which allows attackers to bypass update protections.

EPSS

Процентиль: 9%

0.00033

Низкий

9.1 Critical

CVSS3

CVE ID

Дефекты

CWE-295