exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 9

CVE-2016-7099

около 9 лет назад

The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

CVSS3: 5.9

EPSS: Низкий

CVE-2016-7099

около 9 лет назад

The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

CVSS3: 7.4

EPSS: Низкий

CVE-2016-7099

около 9 лет назад

The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

CVSS3: 5.9

EPSS: Низкий

CVE-2016-7099

около 9 лет назад

The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, ...

CVSS3: 5.9

EPSS: Низкий

GHSA-79cw-cghj-vx7w

больше 3 лет назад

The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

CVSS3: 5.9

EPSS: Низкий

SUSE-SU-2016:2470-2

около 9 лет назад

Security update for nodejs4

EPSS: Низкий

SUSE-SU-2016:2470-1

около 9 лет назад

Security update for nodejs4

EPSS: Низкий

openSUSE-SU-2016:2496-1

около 9 лет назад

Security update for nodejs

EPSS: Низкий

SUSE-SU-2019:14246-1

почти 6 лет назад

Security update for Mozilla Firefox

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2016-7099 The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.	CVSS3: 5.9	1% Низкий	около 9 лет назад
CVE-2016-7099 The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.	CVSS3: 7.4	1% Низкий	около 9 лет назад
CVE-2016-7099 The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.	CVSS3: 5.9	1% Низкий	около 9 лет назад
CVE-2016-7099 The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, ...	CVSS3: 5.9	1% Низкий	около 9 лет назад
GHSA-79cw-cghj-vx7w The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.	CVSS3: 5.9	1% Низкий	больше 3 лет назад
SUSE-SU-2016:2470-2 Security update for nodejs4			около 9 лет назад
SUSE-SU-2016:2470-1 Security update for nodejs4			около 9 лет назад
openSUSE-SU-2016:2496-1 Security update for nodejs			около 9 лет назад
SUSE-SU-2019:14246-1 Security update for Mozilla Firefox			почти 6 лет назад

Уязвимостей на страницу