CVE-2015-3886

Опубликовано: 21 июл. 2017

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.5

CVSS3: 9.8

Описание

libinfinity before 0.6.6-1 does not validate expired SSL certificates, which allows remote attackers to have unspecified impact via unknown vectors.

Релиз	Статус	Примечание
artful	not-affected	0.6.6-1
bionic	not-affected	0.6.6-1
cosmic	not-affected	0.6.6-1
devel	not-affected	0.6.6-1
esm-apps/bionic	not-affected	0.6.6-1
esm-apps/xenial	not-affected	0.6.6-1
esm-infra-legacy/trusty	DNE	trusty/esm was DNE [trusty was not-affected [code not present]]
precise	ignored	end of life
precise/esm	DNE	precise was needs-triage
trusty	not-affected	code not present

Показывать по

EPSS

Процентиль: 68%

0.00583

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2015-3886

CVSS3: 9.8

nvd

больше 8 лет назад

libinfinity before 0.6.6-1 does not validate expired SSL certificates, which allows remote attackers to have unspecified impact via unknown vectors.

CVE-2015-3886

CVSS3: 9.8

debian

больше 8 лет назад

libinfinity before 0.6.6-1 does not validate expired SSL certificates, ...

GHSA-fjjv-xp9p-25r7

CVSS3: 9.8

github

больше 3 лет назад

libinfinity before 0.6.6-1 does not validate expired SSL certificates, which allows remote attackers to have unspecified impact via unknown vectors.

EPSS

Процентиль: 68%

0.00583

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3