exploitDog

GHSA-xwgw-cx39-c2gx

Опубликовано: 17 мая 2022

Источник: github

Github: Не прошло ревью

Описание

Barracuda Web Filter before 8.1.0.005, when SSL Inspection is enabled, does not verify X.509 certificates from upstream SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Barracuda Web Filter before 8.1.0.005, when SSL Inspection is enabled, does not verify X.509 certificates from upstream SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Ссылки

EPSS

Процентиль: 41%

0.00189

Низкий

CVE ID

Связанные уязвимости

CVE-2015-0961

nvd

около 10 лет назад

Barracuda Web Filter before 8.1.0.005, when SSL Inspection is enabled, does not verify X.509 certificates from upstream SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

EPSS

Процентиль: 41%

0.00189

Низкий

CVE ID