Количество 2
Количество 2
CVE-2025-66001
NeuVector supports login authentication through OpenID Connect. However, the TLS verification (which verifies the remote server's authenticity and integrity) for OpenID Connect is not enforced by default. As a result this may expose the system to man-in-the-middle (MITM) attacks.
GHSA-4jj9-cgqc-x9h5
NeuVector OpenID Connect is vulnerable to man-in-the-middle (MITM)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2025-66001 NeuVector supports login authentication through OpenID Connect. However, the TLS verification (which verifies the remote server's authenticity and integrity) for OpenID Connect is not enforced by default. As a result this may expose the system to man-in-the-middle (MITM) attacks. | CVSS3: 8.8 | 0% Низкий | около 1 месяца назад |
| GHSA-4jj9-cgqc-x9h5 NeuVector OpenID Connect is vulnerable to man-in-the-middle (MITM) | CVSS3: 8.8 | 0% Низкий | около 2 месяцев назад |
Уязвимостей на страницу