Lucene search
Redhat.comRH:CVE-2022-2996HistoryAug 25, 2022 - 7:51 p.m.
CVE-2022-2996
2022-08-2519:51:08
redhat.com
access.redhat.com
15
python-scciclient
https connection
server's certificate
verification
man-in-the-middle
mitm attacks
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
0.001 Low
EPSS
Percentile
41.7%
A flaw was found in the python-scciclient when making an HTTPS connection to a server where the server’s certificate would not be verified. This issue opens up the connection to possible Man-in-the-middle (MITM) attacks.
Related
nessus
nessus
Debian DLA-3180-1 : python-scciclient - LTS security update
2022-11-08 00:00:00
cvelist
cvelist
CVE-2022-2996
2022-09-01 00:00:00
prion
prion
Design/Logic Flaw
2022-09-01 18:15:00
redhat
redhat
openvas
openvas
Debian: Security Advisory (DLA-3180-1)
2022-11-08 00:00:00
ubuntucve
ubuntucve
CVE-2022-2996
2022-09-01 00:00:00
osv
osv
python-scciclient vulnerable to Man-in-the-middle (MITM) attacks
2022-09-02 00:01:08
python-scciclient - security update
2022-11-07 00:00:00
nvd
nvd
CVE-2022-2996
2022-09-01 18:15:09
cve
cve
CVE-2022-2996
2022-09-01 18:15:09
debian
debian
[SECURITY] [DLA 3180-1] python-scciclient security update
2022-11-07 11:36:14
veracode
veracode
Man-in-the-Middle (MitM)
2022-09-02 05:58:36
debiancve
debiancve
CVE-2022-2996
2022-09-01 18:15:09
github
github
python-scciclient vulnerable to Man-in-the-middle (MITM) attacks
2022-09-02 00:01:08
7.4 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
0.001 Low
EPSS
Percentile
41.7%
Related for RH:CVE-2022-2996