Lucene search
Veracode Vulnerability DatabaseVERACODE:39292HistoryFeb 16, 2023 - 7:09 a.m.
Improper Certificate Validation
2023-02-1607:09:00
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
certificate validation
third-party apis
rest api
remote attacker
https
http
user interface
EPSS
0.001
Percentile
32.1%
cloudconnectlib is vulnerable to Improper Certificate Validation. Requests to third-party APIs through the REST API Modular Input allows a remote attacker to downgrade the API request to HTTP after a connection over HTTPS fails when the REST API Modular Input functionality is used through its user interface.
Related
prion
prion
Design/Logic Flaw
2023-02-14 18:15:00
cve
cve
CVE-2023-22943
2023-02-14 18:15:12
nvd
nvd
CVE-2023-22943
2023-02-14 18:15:12
