7 matches found
EUVD-2020-5153
Malware in sbrugna...
CVE-2020-12872
yawsconfig.erl in Yaws through 2.0.2 and/or 2.0.7 loads obsolete TLS ciphers, as demonstrated by ones that allow Sweet32 attacks, if running on an Erlang/OTP virtual machine with a version less than 21.0...
CVE-2020-12872
yawsconfig.erl in Yaws through 2.0.2 and/or 2.0.7 loads obsolete TLS ciphers, as demonstrated by ones that allow Sweet32 attacks, if running on an Erlang/OTP virtual machine with a version less than 21.0...
Design/Logic Flaw
yawsconfig.erl in Yaws through 2.0.2 and/or 2.0.7 loads obsolete TLS ciphers, as demonstrated by ones that allow Sweet32 attacks, if running on an Erlang/OTP virtual machine with a version less than 21.0...
CVE-2020-12872
yawsconfig.erl in Yaws through 2.0.2 and/or 2.0.7 loads obsolete TLS ciphers, as demonstrated by ones that allow Sweet32 attacks, if running on an Erlang/OTP virtual machine with a version less than 21.0...
CVE-2020-12872
yawsconfig.erl in Yaws through 2.0.2 and/or 2.0.7 loads obsolete TLS ciphers, as demonstrated by ones that allow Sweet32 attacks, if running on an Erlang/OTP virtual machine with a version less than 21.0...
CVE-2020-12872
CVE-2020-12872 affects the Yaws web server (Erlang) via yaws_config.erl in versions up to 2.0.7, which load obsolete TLS ciphers that enable Sweet32 attacks. Public advisories (e.g., Arch Linux ASA-202009-14) and OSV/NVD entries confirm the issue and note fixed upstream in 2.0.8; upgrading to 2.0...