PT-2020-21381 — Airtable Airtable

PT-2020-21381 · Airtable · Airtable

Published

2020-09-03

Updated

2020-09-03

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions airtable versions prior to 0.7.2

Description The issue concerns a Machine-In-The-Middle vulnerability due to unintentionally disabled SSL certificate validation by default in the affected versions. This could allow attackers with a privileged network position to decrypt intercepted traffic.

Recommendations Upgrade to version 0.7.2 or later.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

GHSA-JRJ9-5QP6-2V8Q

Affected Products

Airtable