Описание
A missing verification of the TLS host in Nextcloud Mail 1.1.3 allowed a man in the middle attack.
A missing verification of the TLS host in Nextcloud Mail 1.1.3 allowed a man in the middle attack.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2020-8156
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KC6HLX5SG4PZO6Y54D2LFJ4ATG76BKOP
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KC6HLX5SG4PZO6Y54D2LFJ4ATG76BKOP
- https://nextcloud.com/security/advisory/?id=NC-SA-2020-020
Связанные уязвимости
CVSS3: 7
nvd
больше 5 лет назад
A missing verification of the TLS host in Nextcloud Mail 1.1.3 allowed a man in the middle attack.