An issue was discovered in the hyper crate before 0.9.4 for Rust on Windows. There is an HTTPS man-in-the-middle vulnerability because hostname verification was omitted.
References
Link | Resource |
---|---|
https://rustsec.org/advisories/RUSTSEC-2016-0002.html | Release Notes Third Party Advisory |
https://rustsec.org/advisories/RUSTSEC-2016-0002.html | Release Notes Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 02:45
Type | Values Removed | Values Added |
---|---|---|
References | () https://rustsec.org/advisories/RUSTSEC-2016-0002.html - Release Notes, Third Party Advisory |
Information
Published : 2019-08-26 13:15
Updated : 2024-11-21 02:45
NVD link : CVE-2016-10932
Mitre link : CVE-2016-10932
CVE.ORG link : CVE-2016-10932
JSON object : View
Products Affected
hyper
- hyper
microsoft
- windows
CWE
CWE-254
7PK - Security Features