6 matches found
GHSA-W6Q2-48CH-FJ26 Allegro Tech BigFlow vulnerable to Missing SSL Certificate Validation
Allegro Tech BigFlow prior to 1.6.0 is vulnerable to Missing SSL Certificate Validation...
Allegro Tech BigFlow vulnerable to Missing SSL Certificate Validation
Allegro Tech BigFlow prior to 1.6.0 is vulnerable to Missing SSL Certificate Validation...
CVE-2023-25392
Allegro Tech BigFlow 1.6 is vulnerable to Missing SSL Certificate Validation...
Input validation
Allegro Tech BigFlow 1.6 is vulnerable to Missing SSL Certificate Validation...
CVE-2023-25392
Allegro Tech BigFlow 1.6 is vulnerable to Missing SSL Certificate Validation...
CVE-2023-25392
CVE-2023-25392 affects Allegro Tech BigFlow before 1.6.0. The issue is a lack of SSL certificate validation in BigFlow, enabling potential interception of traffic and exposure of confidential information (CVSS 3.1: Confidentiality High; Vector Network; Complexity High; Privileges None). Several c...