Description
brianleroux tiny-json-http version all versions since commit 9b8e74a232bba4701844e07bcba794173b0238a8 (Oct 29 2016) contains a Missing SSL certificate validation vulnerability in The libraries core functionality is affected. that can result in Exposes the user to man-in-the-middle attacks.
Published: 2018-03-13
Score: 8.1 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2018-0175 brianleroux tiny-json-http version all versions since commit 9b8e74a232bba4701844e07bcba794173b0238a8 (Oct 29 2016) contains a Missing SSL certificate validation vulnerability in The libraries core functionality is affected. that can result in Exposes the user to man-in-the-middle attacks.
Github GHSA Github GHSA GHSA-7h42-5vj2-cq39 tiny-json-http missing SSL certificate validation
History

No history.

Subscriptions

Tiny-json-http Project Tiny-json-http
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-05T12:33:49.179Z

Reserved: 2018-03-12T00:00:00.000Z

Link: CVE-2018-1000096

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2018-03-13T01:29:00.907

Modified: 2024-11-21T03:39:38.260

Link: CVE-2018-1000096

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses