Lucene search
PRIOn knowledge basePRION:CVE-2021-34433HistoryAug 20, 2021 - 5:15 p.m.
Code injection
2021-08-2017:15:00
PRIOn knowledge base
www.prio-n.com
2
In Eclipse Californium version 2.0.0 to 2.6.4 and 3.0.0-M1 to 3.0.0-M3, the certificate based (x509 and RPK) DTLS handshakes accidentally succeeds without verifying the server side’s signature on the client side, if that signature is not included in the server’s ServerKeyExchange.
| CPE | Name | Operator | Version |
|---|---|---|---|
| californium | eq | 3.0.0 m2 | |
| californium | eq | 3.0.0 m3 | |
| californium | eq | 3.0.0 m1 | |
| californium | ge | 2.0.0 | |
| californium | lt | 2.6.5 |
Related
nvd
nvd
CVE-2021-34433
2021-08-20 17:15:07
cvelist
cvelist
CVE-2021-34433
2021-08-20 17:10:10
osv
osv
CVE-2021-34433
2021-08-20 17:15:07
cve
cve
CVE-2021-34433
2021-08-20 17:15:07