Описание
Cohesity DataProtect prior to 6.8.1_u5 or 7.1 was discovered to have a incorrect access control vulnerability due to a lack of TLS Certificate Validation.
Ссылки
- Product
- Third Party Advisory
- Product
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 7.0.1 (включая)
cpe:2.3:a:cohesity:cohesity_dataplatform:*:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00534
Низкий
6.5 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-295
Связанные уязвимости
CVSS3: 6.5
github
около 2 лет назад
Cohesity DataProtect 6.8.1 and 6.6.0d was discovered to have a incorrect access control vulnerability due to a lack of TLS Certificate Validation.
EPSS
Процентиль: 67%
0.00534
Низкий
6.5 Medium
CVSS3
Дефекты
NVD-CWE-noinfo
CWE-295