Lucene search
GoogleOSV:GO-2021-0083HistoryApr 14, 2021 - 8:04 p.m.
Improper certificate validation in github.com/hybridgroup/gobot
2021-04-1420:04:52
Google
osv.dev
9
0.001 Low
EPSS
Percentile
38.7%
TLS certificate verification is skipped when connecting to a MQTT server. This allows an attacker who can MITM the connection to read, or forge, messages passed between the client and server.
| CPE | Name | Operator | Version |
|---|---|---|---|
| github.com/hybridgroup/gobot | lt | 1.12.1-0.20190521122906-c1aa4f867846 |
Related
osv
osv
Hybrid Group Gobot Improper Certificate Validation vulnerability
2022-05-24 16:46:55
CVE-2019-12496
2019-05-31 11:29:02
cvelist
cvelist
CVE-2019-12496
2019-05-31 10:59:23
nvd
nvd
CVE-2019-12496
2019-05-31 11:29:02
gitlab
gitlab
Improper Certificate Validation
2019-05-31 00:00:00
veracode
veracode
Weak Authentication
2019-06-03 10:29:18
github
github
Hybrid Group Gobot Improper Certificate Validation vulnerability
2022-05-24 16:46:55
cve
cve
CVE-2019-12496
2019-05-31 11:29:02
prion
prion
Default credentials
2019-05-31 11:29:00