Vulnerability Details CVE-2019-15525
There is Missing SSL Certificate Validation in the pw3270 terminal emulator before version 5.1.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.9%
CVSS Severity
CVSS v3 Score 8.1
CVSS v2 Score 6.8
References
- http://www.openwall.com/lists/oss-security/2019/08/26/1
- https://softwarepublico.gov.br/gitlab/pw3270/principal/compare/efa4ab249821ec351ae986683371043b8ca3c2ea...ff2b10fd56cf1fdae862b44bb0610e20e08de427
- https://www.openwall.com/lists/oss-security/2019/08/26/1
- http://www.openwall.com/lists/oss-security/2019/08/26/1
- https://softwarepublico.gov.br/gitlab/pw3270/principal/compare/efa4ab249821ec351ae986683371043b8ca3c2ea...ff2b10fd56cf1fdae862b44bb0610e20e08de427
- https://www.openwall.com/lists/oss-security/2019/08/26/1
Products affected by CVE-2019-15525
-
cpe:2.3:a:pw3270_project:pw3270:-