Lucene search

K

MitreCVELIST:CVE-2013-7304

HistoryJan 22, 2014 - 7:00 p.m.

CVE-2013-7304

2014-01-2219:00:00

mitre

www.cve.org

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.0%

Check Point Endpoint Security MI Server through R73 3.0.0 HFA2.5 does not configure X.509 certificate validation for client devices, which allows man-in-the-middle attackers to spoof SSL servers by presenting an arbitrary certificate during a session established by a client.

References

secunia.com/advisories/56744

www.securityfocus.com/bid/65135

www.securitytracker.com/id/1029704

exchange.xforce.ibmcloud.com/vulnerabilities/90674

supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk97784

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

40.0%

Related for CVELIST:CVE-2013-7304

cve1 prion1 nvd1