The (1) proton.reactor.Connector, (2) proton.reactor.Container, and (3) proton.utils.BlockingConnection classes in Apache Qpid Proton before 0.12.1 improperly use an unencrypted connection for an amqps URI scheme when SSL support is unavailable, which might allow man-in-the-middle attackers to obtain sensitive information or modify data via unspecified vectors.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2016-04-12T14:00:00
Updated: 2019-04-23T11:06:04
Reserved: 2016-01-29T00:00:00
Link: CVE-2016-2166
JSON object: View
NVD Information
Status : Modified
Published: 2016-04-12T14:59:11.183
Modified: 2023-11-07T02:31:00.470
Link: CVE-2016-2166
JSON object: View
Redhat Information
No data.
CWE