← volver
CVE-2015-0962

CVE-2015-0962

EPSS 1.4%
Barracuda Web Filter 7.x and 8.x before 8.1.0.005, when SSL Inspection is enabled, uses the same root Certification Authority certificate across different customers' installations, which makes it easier for remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging the certificate's trust relationship.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://blog.barracuda.com/2015/04/28/barracuda-delivers-updated-ssl-inspection-feature/https://techlib.barracuda.com/BWF/UpdateSSLCertshttps://www.barracuda.com/support/techalertshttp://www.kb.cert.org/vuls/id/534407