PT-2018-4061 · Twibright+2 · Twibright Links+2
Vincent Danen
·
Published
2018-02-23
·
Updated
2022-12-30
·
CVE-2012-6709
CVSS v3.1
5.9
Medium
| Vector | AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
ELinks version 0.12
Twibright Links version 2.3
Description
The issue is related to missing SSL certificate validation.
Recommendations
For ELinks version 0.12, update to a version that includes proper SSL certificate validation.
For Twibright Links version 2.3, update to a version that includes proper SSL certificate validation.
As a temporary workaround, consider disabling SSL connections until a patch is available.
Fix
Improper Certificate Validation
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Elinks
Twibright Links