exploitDog

GHSA-vwrp-7x3m-9644

Опубликовано: 14 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.6

Описание

A spoofing vulnerability exists when the Azure IoT Device Provisioning AMQP Transport library improperly validates certificates over the AMQP protocol, aka "Azure IoT SDK Spoofing Vulnerability." This affects C# SDK, C SDK, Java SDK.

A spoofing vulnerability exists when the Azure IoT Device Provisioning AMQP Transport library improperly validates certificates over the AMQP protocol, aka "Azure IoT SDK Spoofing Vulnerability." This affects C# SDK, C SDK, Java SDK.

Ссылки

EPSS

Процентиль: 59%

0.00383

Низкий

5.6 Medium

CVSS3

CVE ID

Дефекты

CWE-295

Связанные уязвимости

CVE-2018-8119

CVSS3: 5.6

nvd

больше 7 лет назад

A spoofing vulnerability exists when the Azure IoT Device Provisioning AMQP Transport library improperly validates certificates over the AMQP protocol, aka "Azure IoT SDK Spoofing Vulnerability." This affects C# SDK, C SDK, Java SDK.

CVE-2018-8119

msrc

больше 7 лет назад

Azure IoT SDK Spoofing Vulnerability

EPSS

Процентиль: 59%

0.00383

Низкий

5.6 Medium

CVSS3

CVE ID

Дефекты

CWE-295