Описание
Dell EMC Streaming Data Platform, versions prior to 1.3 contain an SSL Strip Vulnerability in the User Interface (UI). A remote unauthenticated attacker could potentially exploit this vulnerability, leading to a downgrade in the communications between the client and server into an unencrypted format.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.3 (исключая)
cpe:2.3:a:dell:emc_streaming_data_platform:*:*:*:*:*:*:*:*
EPSS
Процентиль: 60%
0.00401
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-757
Связанные уязвимости
github
около 4 лет назад
Dell EMC Streaming Data Platform, versions prior to 1.3 contain an SSL Strip Vulnerability in the User Interface (UI). A remote unauthenticated attacker could potentially exploit this vulnerability, leading to a downgrade in the communications between the client and server into an unencrypted format.
EPSS
Процентиль: 60%
0.00401
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-757