CVE-2015-0210

Опубликовано: 28 авг. 2017

Источник: nvd

CVSS3: 5.9

CVSS2: 4.3

EPSS Низкий

Описание

wpa_supplicant 2.0-16 does not properly check certificate subject name, which allows remote attackers to cause a man-in-the-middle attack.

Ссылки

https://bugzilla.redhat.com/show_bug.cgi?id=1178263
Exploit
Issue Tracking
Patch
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1178921
Exploit
Issue Tracking
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1178263
Exploit
Issue Tracking
Patch
Third Party Advisory
VDB Entry
https://bugzilla.redhat.com/show_bug.cgi?id=1178921
Exploit
Issue Tracking
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:w1.fi:wpa_supplicant:2.0-16:*:*:*:*:*:*:*

EPSS

Процентиль: 53%

0.00301

Низкий

5.9 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-295

Связанные уязвимости

CVE-2015-0210

CVSS3: 5.9

ubuntu

больше 8 лет назад

wpa_supplicant 2.0-16 does not properly check certificate subject name, which allows remote attackers to cause a man-in-the-middle attack.

CVE-2015-0210

redhat

около 11 лет назад

wpa_supplicant 2.0-16 does not properly check certificate subject name, which allows remote attackers to cause a man-in-the-middle attack.

CVE-2015-0210

CVSS3: 5.9

debian

больше 8 лет назад

wpa_supplicant 2.0-16 does not properly check certificate subject name ...

SUSE-SU-2018:1659-1

suse-cvrf

больше 7 лет назад

Security update for wpa_supplicant

GHSA-4vg4-q9rf-r94r

CVSS3: 5.9

github

больше 3 лет назад

wpa_supplicant 2.0-16 does not properly check certificate subject name, which allows remote attackers to cause a man-in-the-middle attack.

EPSS

Процентиль: 53%

0.00301

Низкий

5.9 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-295