Описание
Vocera Communications wireless handsets, when using Protected Extensible Authentication Protocol (PEAP), do not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle (MITM) attacks.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:h:vocera:wireless_handset:-:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00219
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
github
почти 4 года назад
Vocera Communications wireless handsets, when using Protected Extensible Authentication Protocol (PEAP), do not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle (MITM) attacks.
EPSS
Процентиль: 44%
0.00219
Низкий
4.3 Medium
CVSS2
Дефекты
CWE-20