Incorrect validation of the TLS SNI hostname in osquery versions after 2.9.0 and prior to 4.2.0 could allow an malicious user to MITM osquery traffic in the absence of a configured root chain of trust.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
linuxfoundation osquery |