A Improper Certificate Validation vulnerability in susestudio-common of SUSE Studio onsite allows remote attackers to MITM connections to the repositories, which allows the modification of packages received over these connections. This issue affects: SUSE Studio onsite susestudio-common version 1.3.17-56.6.3 and prior versions.
References
Link | Resource |
---|---|
https://bugzilla.suse.com/show_bug.cgi?id=1065397 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: microfocus
Published: 2020-01-27T00:00:00
Updated: 2021-01-06T16:15:52
Reserved: 2017-09-27T00:00:00
Link: CVE-2017-14806
JSON object: View
NVD Information
Status : Modified
Published: 2020-01-27T10:15:11.247
Modified: 2023-11-07T02:39:13.480
Link: CVE-2017-14806
JSON object: View
Redhat Information
No data.
CWE