← back
CVE-2015-7826

CVE-2015-7826

EPSS 1.1%
botan 1.11.x before 1.11.22 improperly handles wildcard matching against hostnames, which might allow remote attackers to have unspecified impact via a valid X.509 certificate, as demonstrated by accepting *.example.com as a match for bar.foo.example.com.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://botan.randombit.net/security.html#id3https://bugzilla.redhat.com/show_bug.cgi?id=1311620