CVE-2013-6418

Опубликовано: 05 мая 2014

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 5.8

Описание

PyWBEM 0.7 and earlier uses a separate connection to validate X.509 certificates, which allows man-in-the-middle attackers to spoof a peer via an arbitrary certificate.

Релиз	Статус	Примечание
artful	ignored	end of life
bionic	not-affected	0.8.0~dev650-1
cosmic	ignored	end of life
devel	DNE
disco	not-affected	0.8.0~dev650-1
esm-apps/bionic	not-affected	0.8.0~dev650-1
esm-apps/xenial	not-affected	0.8.0~dev650-1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was needs-triage]
lucid	ignored	end of life
precise	ignored	end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 57%

0.00345

Низкий

5.8 Medium

CVSS2

Связанные уязвимости

CVE-2013-6418

redhat

около 12 лет назад

PyWBEM 0.7 and earlier uses a separate connection to validate X.509 certificates, which allows man-in-the-middle attackers to spoof a peer via an arbitrary certificate.

CVE-2013-6418

nvd

больше 11 лет назад

PyWBEM 0.7 and earlier uses a separate connection to validate X.509 certificates, which allows man-in-the-middle attackers to spoof a peer via an arbitrary certificate.

CVE-2013-6418

msrc

5 месяцев назад

PyWBEM 0.7 and earlier uses a separate connection to validate X.509 certificates, which allows man-in-the-middle attackers to spoof a peer via an arbitrary certificate.

CVE-2013-6418

debian

больше 11 лет назад

PyWBEM 0.7 and earlier uses a separate connection to validate X.509 ce ...

GHSA-f9q5-46qg-74x4

CVSS3: 7.5

github

больше 3 лет назад

PyWBEM TOCTOU vulnerability in certificate validation

EPSS

Процентиль: 57%

0.00345

Низкий

5.8 Medium

CVSS2

CVE-2013-6418

Описание

Пакет pywbem

Ссылки на источники

Связанные уязвимости