CVE-2015-4288 in Web Security Applianceजानकारी

सारांश

द्वारा MITRE

The LDAP implementation on the Cisco Web Security Appliance (WSA) 8.5.0-000, Email Security Appliance (ESA) 8.5.7-042, and Content Security Management Appliance (SMA) 8.3.6-048 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate, aka Bug IDs CSCuo29561, CSCuv40466, and CSCuv40470.

Be aware that VulDB is the high quality source for vulnerability data.

आरक्षित करना

04/06/2015

प्रकटीकरण

28/07/2015

प्रविष्टि

VDB-76830

EPSS

0.00477

गतिविधियाँ

बहुत कम

क्षेत्र

Energy, Hospital, ...

स्रोत

Do you want to use VulDB in your project?

Use the official API to access entries easily!