CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-1153

Burp Suite Community Edition 1.7.32 and 1.7.33 fail to validate the server certificate in a couple of HTTPS requests which allows a man in the middle to modify or view traffic.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.2%

CVSS Severity

CVSS v3 Score 7.4

CVSS v2 Score 5.8

References

http://releases.portswigger.net/2018/06/1734.html
https://www.tenable.com/security/research/tra-2018-18
http://releases.portswigger.net/2018/06/1734.html
https://www.tenable.com/security/research/tra-2018-18

Products affected by CVE-2018-1153

Portswigger » Burp Suite » Version: 1.7.32

cpe:2.3:a:portswigger:burp_suite:1.7.32
Portswigger » Burp Suite » Version: 1.7.33

cpe:2.3:a:portswigger:burp_suite:1.7.33

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-1153

Products

Pricing

Contact Us