CVE-2023-5594
Improper following of a certificate's chain of trust in ESET security products
Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate signed using the MD5 or SHA1 algorithm as trusted.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:L/A:N
Productos afectados
ESET, spol. s r.o. · ESET Endpoint AntivirusESET, spol. s r.o. · ESET Endpoint Antivirus for Linux 10.0 and aboveESET, spol. s r.o. · ESET Endpoint SecurityESET, spol. s r.o. · ESET File Security for Microsoft AzureESET, spol. s r.o. · ESET Internet SecurityESET, spol. s r.o. · ESET Mail Security for IBM DominoESET, spol. s r.o. · ESET Mail Security for Microsoft Exchange ServerESET, spol. s r.o. · ESET NOD32 AntivirusESET, spol. s r.o. · ESET Security for Microsoft SharePoint ServerESET, spol. s r.o. · ESET Security UltimateESET, spol. s r.o. · ESET Server Security for Linux 10.1 and aboveESET, spol. s r.o. · ESET Server Security for Windows ServerESET, spol. s r.o. · ESET Smart Security Premium¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →