Lucene search
K

10 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:26 a.m.3 views

SUSE CVE-2014-7189

crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors...

4.3CVSS6.9AI score0.01383EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2014/11/11 12:0 a.m.24 views

Fedora 21 : golang-1.3.3-1.fc21 (2014-14130)

update to go1.3.3 bz1146882 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

4.3CVSS7.4AI score0.01383EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2014/11/03 12:0 a.m.31 views

Amazon Linux AMI : golang (ALAS-2014-437)

crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux AMI Security Advisory...

4.3CVSS7.4AI score0.01383EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2014/10/12 12:0 a.m.30 views

Fedora Update for golang FEDORA-2014-11971

Check the version of golang SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868386";...

4.3CVSS9.4AI score0.01383EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2014/10/12 12:0 a.m.21 views

Fedora 19 : golang-1.3.3-1.fc19 (2014-11971)

update to go1.3.3 bz1146882 update to go1.3.2 bz1147324 more work to get cgo.a timestamps to line up, due to build-env Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and form...

4.3CVSS7.4AI score0.01383EPSS
Exploits0References3
OSV
OSV
added 2014/10/09 2:39 p.m.5 views

MGASA-2014-0410 Updated golang packages fix CVE-2014-7189

Updated golang packages fix security vulnerability: Go 1.1 through 1.3.2 has an issue that affects programs that use crypto/tls to implement a TLS server. If the server enables TLS client authentication using certificates and explicitly sets SessionTicketsDisabled to true in the tls.Config, then ...

4.3CVSS6.3AI score0.01383EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2014/10/07 2:55 p.m.29 views

CVE-2014-7189

crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors...

4.3CVSS6.9AI score0.01383EPSS
Exploits0References3
OSV
OSV
added 2014/10/07 2:55 p.m.2 views

BELL-CVE-2014-7189 CVE-2014-7189 does not affect BellSoft software

Bulletin has no description...

4.3CVSS5.8AI score0.01383EPSS
Exploits0References1
Cvelist
Cvelist
added 2014/10/07 2:0 p.m.32 views

CVE-2014-7189

crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors...

7.7AI score0.01383EPSS
Exploits0References4
CVE
CVE
added 2014/10/07 2:0 p.m.67 views

CVE-2014-7189

CVE-2014-7189 affects the crypto/tls implementation in Go 1.1 up to 1.3.2, where enabling SessionTicketsDisabled can enable MITM attackers to spoof clients via unspecified vectors. Connected records identify this CVE in multiple contexts: GO-2021-0154 describes a MITM attack when SessionTicketsDi...

4.3CVSS8.2AI score0.01383EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder