Microsoft · C Sdk · CVE-2018-8119
**Name of the Vulnerable Software and Affected Versions**
Azure IoT Device Provisioning AMQP Transport library (affected versions not specified)
**Description**
A spoofing issue exists due to improper certificate validation over the AMQP protocol. This affects the C# SDK, C SDK, and Java SDK.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.