PT-2018-11857 · Netiq · Netiq Identity Manager

Publicado

2018-03-26

Atualizado

2019-10-09

CVE-2018-1348

CVSS v3.1

7.4

Alta

Vetor

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions NetIQ Identity Manager driver versions prior to 4.7

Description The issue allows for an SSL handshake renegotiation, which could result in a man-in-the-middle (MITM) attack. This means an attacker could potentially intercept and alter communication between two parties.

Recommendations For versions prior to 4.7, update to version 4.7 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2018-1348

Produtos afetados

Netiq Identity Manager

PT-2018-11857 · Netiq · Netiq Identity Manager

CVE-2018-1348

Identificadores relacionados

Produtos afetados

Referências · 4