Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.9
CVSSv3

CVE-2020-12105

Published: 23/04/2020 Updated: 03/05/2022
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Subscribe to Infradead

Vulnerability Summary

OpenConnect up to and including 8.08 mishandles negative return values from X509_check_ function calls, which might assist attackers in performing man-in-the-middle attacks.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

infradead openconnect

opensuse leap 15.1

Vendor Advisories

Debian CVElist Bug Report Logs: openconnect: CVE-2020-12105
Debian Bug report logs - #959428 openconnect: CVE-2020-12105 Package: openconnect; Maintainer for openconnect is Mike Miller <mtmiller@debianorg>; Source for openconnect is src:openconnect (PTS, buildd, popcon) Reported by: Luca Boccassi <bluca@debianorg> Date: Sat, 2 May 2020 10:33:02 UTC Severity: normal Foun ...

References

CWE-755https://gitlab.com/openconnect/openconnect/-/merge_requests/96http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00039.htmlhttps://security.gentoo.org/glsa/202006-15https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=959428https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validationCVE-2024-34413CVE-2024-34089CVE-2024-33408localSQLCVE-2024-0402CVE-2024-33910CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook