VDB
BDU%3A2020-03621
BDU%3A2020-03621
PUBLISHED
CVSS 8.800000190734863 HIGH
Уязвимость реализации протокола TLS программной платформы Node.js, позволяющая нарушителю реализовать атаку типа «человек посередине»
Risk Scores
CVSS 2.0
8.800000190734863
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Canonical Ltd., Red Hat Inc., Oracle Corp., Hipp Wyrick Company Inc, Hitachi, Ltd. | Ubuntu, Red Hat Enterprise Linux, Communications Network Charging and Control, SQLite, Sun ZFS Storage Appliance Kit, Financial Services Applications, Hitachi Energy Gateway Station (GWS), FACTS Control Platform (FCP) |
Exploit Intelligence
Timeline
- Jul 31, 2020 CVE Published
- Aug 31, 2022 CVE Updated
References
- https://hackerone.com/reports/811502 url
- https://nodejs.org/en/blog/vulnerability/june-2020-security-releases/ url
- https://security.netapp.com/advisory/ntap-20200625-0002/ url
- https://www.oracle.com/security-alerts/cpujul2020.html url
- https://www.oracle.com/security-alerts/cpujan2021.html url
- https://www.cisa.gov/uscert/ics/advisories/icsa-22-242-02 url
- https://www.cisa.gov/uscert/ics/advisories/icsa-22-242-01 url
- https://access.redhat.com/security/cve/cve-2020-8172 advisory