Lucene search

K

Brightcloud Security Vulnerabilities

cve
cve

CVE-2018-4012

An exploitable buffer overflow vulnerability exists in the HTTP header-parsing function of the Webroot BrightCloud SDK. The function bc_http_read_header incorrectly handles overlong headers, leading to arbitrary code execution. An unauthenticated attacker could impersonate a remote BrightCloud...

9CVSS

8.4AI Score

0.003EPSS

2019-01-03 11:00 PM
21
cve
cve

CVE-2018-4015

An exploitable vulnerability exists in the HTTP client functionality of the Webroot BrightCloud SDK. The configuration of the HTTP client does not enforce a secure connection by default, resulting in a failure to validate TLS certificates. An attacker could impersonate a remote BrightCloud server.....

8.1CVSS

7.9AI Score

0.002EPSS

2018-12-18 02:29 PM
30