Lucene search

K

RedhatCVELIST:CVE-2013-4488

HistoryOct 10, 2014 - 1:00 a.m.

CVE-2013-4488

2014-10-1001:00:00

redhat

www.cve.org

6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

49.0%

libgadu before 1.12.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers.

References

www.mail-archive.com/libgadu-devel%40lists.ziew.org/msg01017.html

www.mandriva.com/security/advisories?name=MDVSA-2014:185

www.openwall.com/lists/oss-security/2013/10/31/5

www.securityfocus.com/bid/63473

bugzilla.redhat.com/show_bug.cgi?id=1025718

lists.fedoraproject.org/pipermail/package-announce/2013-December/125143.html

security.gentoo.org/glsa/201508-02

6 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

49.0%

Related for CVELIST:CVE-2013-4488

nessus4 fedora6 debiancve1 openvas10 cve1 prion1 ubuntucve1 securityvulns2 nvd1 mageia1 gentoo1