exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 9

GHSA-79cw-cghj-vx7w

около 3 лет назад

The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

CVSS3: 5.9

EPSS: Низкий

CVE-2016-7099

больше 8 лет назад

The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

CVSS3: 5.9

EPSS: Низкий

CVE-2016-7099

больше 8 лет назад

The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

CVSS3: 7.4

EPSS: Низкий

CVE-2016-7099

больше 8 лет назад

The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.

CVSS3: 5.9

EPSS: Низкий

CVE-2016-7099

больше 8 лет назад

The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, ...

CVSS3: 5.9

EPSS: Низкий

SUSE-SU-2016:2470-2

больше 8 лет назад

Security update for nodejs4

EPSS: Низкий

SUSE-SU-2016:2470-1

больше 8 лет назад

Security update for nodejs4

EPSS: Низкий

openSUSE-SU-2016:2496-1

больше 8 лет назад

Security update for nodejs

EPSS: Низкий

SUSE-SU-2019:14246-1

больше 5 лет назад

Security update for Mozilla Firefox

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
GHSA-79cw-cghj-vx7w The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.	CVSS3: 5.9	0% Низкий	около 3 лет назад
CVE-2016-7099 The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.	CVSS3: 5.9	0% Низкий	больше 8 лет назад
CVE-2016-7099 The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.	CVSS3: 7.4	0% Низкий	больше 8 лет назад
CVE-2016-7099 The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, 0.12.x before 0.12.16, 4.x before 4.6.0, and 6.x before 6.7.0 does not properly handle wildcards in name fields of X.509 certificates, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.	CVSS3: 5.9	0% Низкий	больше 8 лет назад
CVE-2016-7099 The tls.checkServerIdentity function in Node.js 0.10.x before 0.10.47, ...	CVSS3: 5.9	0% Низкий	больше 8 лет назад
SUSE-SU-2016:2470-2 Security update for nodejs4			больше 8 лет назад
SUSE-SU-2016:2470-1 Security update for nodejs4			больше 8 лет назад
openSUSE-SU-2016:2496-1 Security update for nodejs			больше 8 лет назад
SUSE-SU-2019:14246-1 Security update for Mozilla Firefox			больше 5 лет назад

Уязвимостей на страницу