2 matches found
CVE-2018-4015
An exploitable vulnerability exists in the HTTP client functionality of the Webroot BrightCloud SDK. The configuration of the HTTP client does not enforce a secure connection by default, resulting in a failure to validate TLS certificates. An attacker could impersonate a remote BrightCloud server...
Mozilla Network Security Services 'SSL_ImplementedCiphers' Security Bypass Vulnerability
Mozilla Network Security Services is a library that provides cross-platform support for SSL, S/MIME and other Internet security standards. A security bypass vulnerability exists in Mozilla Network Security Services, which could be exploited by a remote attacker to perform a man-in-the-middle atta...