2 matches found
Improper TLS Configuration
github.com/hydraide/hydraide is vulnerable to improper TLS configuration. The vulnerability is due to the client using only RootCAs without proper certificate verification and the server lacking ClientCAs and ClientAuth, which allows an attacker to perform man-in-the-middle MITM attacks and read...
CIGESv2 信息泄露漏洞
CIGESv2 is a queue and reservation management system from CIGESv2. CIGESv2 suffers from an information disclosure vulnerability that stems from the lack of a proper implementation of the TLS protocol, allowing a local attacker to intercept traffic...