Transport Layer Security (TLS) Information Exposure Vulnerability

Published on December 1st, 2019

Summary

Transport Layer Security (TLS) suffers from information exposure vulnerability

Credit:

The information has been provided by Thijs Alkemade

The original article can be found at: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1318

Details

A spoofing vulnerability exists when Transport Layer Security (TLS) accesses non- Extended Master Secret (EMS) sessions, aka ‘Microsoft Windows Transport Layer Security Spoofing Vulnerability’.

Vulnerable Systems:

Transport Layer Security (TLS)

CVE Information:

CVE-2019-1318

Disclosure Timeline:
Published Date:10/10/2019

Transport Layer Security (TLS) Information Exposure Vulnerability

Summary

Credit:

Details

News

Zoho ManageEngine OpManager before 12.4 Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) Vulnerability

News

MiniShare 1.4.1 Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability

News

NETGEAR JNR1010 devices before 1.0.0.32 Cross-Site Request Forgery (CSRF) Vulnerability

Transport Layer Security (TLS) Information Exposure Vulnerability

Summary

Credit:

Details

Related Posts

News

Zoho ManageEngine OpManager before 12.4 Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) Vulnerability

News

MiniShare 1.4.1 Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability

News

NETGEAR JNR1010 devices before 1.0.0.32 Cross-Site Request Forgery (CSRF) Vulnerability