exploitDog

CVE-2020-5812

Опубликовано: 06 фев. 2021

Источник: nvd

CVSS3: 5.9

CVSS2: 4.3

EPSS Низкий

Описание

Nessus AMI versions 8.12.0 and earlier were found to either not validate, or incorrectly validate, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack.

Ссылки

https://www.tenable.com/security/tns-2021-01
Third Party Advisory
https://www.tenable.com/security/tns-2021-01
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:tenable:nessus_amazon_machine_image:*:*:*:*:*:*:*:*

Версия до 8.12.0 (включая)

EPSS

Процентиль: 29%

0.00107

Низкий

5.9 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-295

Связанные уязвимости

GHSA-w929-59q2-gfxf

github

больше 3 лет назад

Nessus AMI versions 8.12.0 and earlier were found to either not validate, or incorrectly validate, a certificate which could allow an attacker to spoof a trusted entity by using a man-in-the-middle (MITM) attack.

EPSS

Процентиль: 29%

0.00107

Низкий

5.9 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-295