ID | CVE-2016-2850 | ||||||
Sažetak | Botan 1.11.x before 1.11.29 does not enforce TLS policy for (1) signature algorithms and (2) ECC curves, which allows remote attackers to conduct downgrade attacks via unspecified vectors. | ||||||
Reference | |||||||
CVSS |
|
||||||
Pristup |
|
||||||
Impact |
|
||||||
CVSS vektor | AV:N/AC:L/Au:N/C:N/I:P/A:N | ||||||
Zadnje važnije ažuriranje | 01-07-2017 - 01:29 | ||||||
Objavljeno | 13-05-2016 - 14:59 |