TitanHQ WebTitan Gateway has incorrect certificate validation for the TLS interception feature.
References
Link | Resource |
---|---|
http://dx.doi.org/10.14722/ndss.2017.23456 | Technical Description |
https://jhalderm.com/pub/papers/interception-ndss17.pdf | Technical Description |
https://www.ndss-symposium.org/ndss2017/ndss-2017-programme/security-impact-https-interception/ | Technical Description |
Configurations
History
No history.
Information
Published : 2018-03-12 04:29
Updated : 2024-02-28 16:25
NVD link : CVE-2017-18227
Mitre link : CVE-2017-18227
CVE.ORG link : CVE-2017-18227
JSON object : View
Products Affected
titanhq
- webtitan_gateway
CWE
CWE-295
Improper Certificate Validation