Описание
When AdaCore Ada Web Server 25.0.0 is linked with GnuTLS, the default behaviour of AWS.Client is vulnerable to a man-in-the-middle attack because of lack of verification of an HTTPS server's certificate (unless the using program specifies a TLS configuration).
Ссылки
- ExploitVendor Advisory
- Mailing ListThird Party Advisory
- ExploitVendor Advisory
Уязвимые конфигурации
EPSS
7.4 High
CVSS3
Дефекты
Связанные уязвимости
When AdaCore Ada Web Server 25.0.0 is linked with GnuTLS, the default behaviour of AWS.Client is vulnerable to a man-in-the-middle attack because of lack of verification of an HTTPS server's certificate (unless the using program specifies a TLS configuration).
When AdaCore Ada Web Server 25.0.0 is linked with GnuTLS, the default ...
When AdaCore Ada Web Server 25.0.0 is linked with GnuTLS, the default behaviour of AWS.Client is vulnerable to a man-in-the-middle attack because of lack of verification of an HTTPS server's certificate (unless the using program specifies a TLS configuration).
EPSS
7.4 High
CVSS3