Lucene search
GoogleOSV:GHSA-RF3F-3P37-2QH4HistorySep 02, 2022 - 12:01 a.m.
python-scciclient vulnerable to Man-in-the-middle (MITM) attacks
2022-09-0200:01:08
Google
osv.dev
4
python-scciclient
https
vulnerability
man-in-the-middle (mitm)
attacks
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
0.001 Low
EPSS
Percentile
41.7%
A flaw was found in the python-scciclient when making an HTTPS connection to a server where the server’s certificate would not be verified. This issue opens up the connection to possible Man-in-the-middle (MITM) attacks.
Related
nessus
nessus
Debian DLA-3180-1 : python-scciclient - LTS security update
2022-11-08 00:00:00
cvelist
cvelist
CVE-2022-2996
2022-09-01 00:00:00
prion
prion
Design/Logic Flaw
2022-09-01 18:15:00
redhatcve
redhatcve
CVE-2022-2996
2022-08-25 19:51:08
redhat
redhat
openvas
openvas
Debian: Security Advisory (DLA-3180-1)
2022-11-08 00:00:00
ubuntucve
ubuntucve
CVE-2022-2996
2022-09-01 00:00:00
nvd
nvd
CVE-2022-2996
2022-09-01 18:15:09
cve
cve
CVE-2022-2996
2022-09-01 18:15:09
osv
osv
python-scciclient - security update
2022-11-07 00:00:00
debian
debian
[SECURITY] [DLA 3180-1] python-scciclient security update
2022-11-07 11:36:14
veracode
veracode
Man-in-the-Middle (MitM)
2022-09-02 05:58:36
debiancve
debiancve
CVE-2022-2996
2022-09-01 18:15:09
github
github
python-scciclient vulnerable to Man-in-the-middle (MITM) attacks
2022-09-02 00:01:08
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
0.001 Low
EPSS
Percentile
41.7%
Related for OSV:GHSA-RF3F-3P37-2QH4