CVE-2014-4630 in RSA BSAFE Micro Edition Suiteinformation

Résumé (Anglaise)

EMC RSA BSAFE Micro Edition Suite (MES) 4.0.x before 4.0.6 and RSA BSAFE SSL-J before 6.1.4 do not ensure that a server's X.509 certificate is the same during renegotiation as it was before renegotiation, which allows man-in-the-middle attackers to obtain sensitive information or modify TLS session data via a "triple handshake attack."

Réserver

24/06/2014

Divulgation

30/12/2014

Entrées

VulDB provides additional information and datapoints for this CVE:

ID	Vulnérabilité	CWE	Exp	Con	CVE
68486	RSA BSAFE Micro Edition Suite/SSL-J TLS Handshake chiffrement faible	310	Non prouvée	Correctif officiel	CVE-2014-4630

Description

CPE

CWE

CVSS

Exploits

Histoire

Diff

Relier

Renseignements sur les menaces

API JSON

API XML

API CSV

◂ PrécédentAperçuSuivant ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!