Описание
An issue was discovered in ssl.c in Axel before 2.17.8. The TLS implementation lacks hostname verification.
An issue was discovered in ssl.c in Axel before 2.17.8. The TLS implementation lacks hostname verification.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2020-13614
- https://github.com/axel-download-accelerator/axel/issues/262
- https://github.com/axel-download-accelerator/axel/releases/tag/v2.17.8
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LPZUQSDGV5XDBJGHBWBHWJIBE47Q4QIB
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/S3ECAKIZA2TGBYLUQTLGRMXUFIOGRHG3
- http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00006.html
- http://lists.opensuse.org/opensuse-security-announce/2020-06/msg00010.html
Связанные уязвимости
CVSS3: 5.9
ubuntu
больше 5 лет назад
An issue was discovered in ssl.c in Axel before 2.17.8. The TLS implementation lacks hostname verification.
CVSS3: 5.9
nvd
больше 5 лет назад
An issue was discovered in ssl.c in Axel before 2.17.8. The TLS implementation lacks hostname verification.
CVSS3: 5.9
debian
больше 5 лет назад
An issue was discovered in ssl.c in Axel before 2.17.8. The TLS implem ...
