6 matches found
CVE-2023-33983
The Introduction Client in Briar through 1.5.3 does not implement out-of-band verification for the public keys of introducees. An introducer can launch man-in-the-middle attacks against later private communication between two introduced parties...
CVE-2023-33983
The Introduction Client in Briar through 1.5.3 does not implement out-of-band verification for the public keys of introducees. An introducer can launch man-in-the-middle attacks against later private communication between two introduced parties...
CVE-2023-33983
The Introduction Client in Briar through 1.5.3 does not implement out-of-band verification for the public keys of introducees. An introducer can launch man-in-the-middle attacks against later private communication between two introduced parties...
Code injection
The Introduction Client in Briar through 1.5.3 does not implement out-of-band verification for the public keys of introducees. An introducer can launch man-in-the-middle attacks against later private communication between two introduced parties...
Briar 安全漏洞
Briar is an open source software communication technology from Briar Open Source. It is designed to provide secure and resilient peer-to-peer communications that operate without a central server and minimize external dependencies. A security vulnerability exists in Briar versions prior to 1.5.3,...
CVE-2023-33983
The CVE-2023-33983 entry covers Briar’s Introduction Client up to version 1.5.3, where there is no out-of-band verification of public keys for Introduced Parties. This enables an introducer to conduct man-in-the-middle attacks on future private communication between two introduced parties. Docume...