TitanHQ WebTitan Gateway has incorrect certificate validation for the TLS interception feature.
References
Link | Resource |
---|---|
http://dx.doi.org/10.14722/ndss.2017.23456 | Technical Description |
https://jhalderm.com/pub/papers/interception-ndss17.pdf | Technical Description |
https://www.ndss-symposium.org/ndss2017/ndss-2017-programme/security-impact-https-interception/ | Technical Description |
http://dx.doi.org/10.14722/ndss.2017.23456 | Technical Description |
https://jhalderm.com/pub/papers/interception-ndss17.pdf | Technical Description |
https://www.ndss-symposium.org/ndss2017/ndss-2017-programme/security-impact-https-interception/ | Technical Description |
Configurations
History
21 Nov 2024, 03:19
Type | Values Removed | Values Added |
---|---|---|
References | () http://dx.doi.org/10.14722/ndss.2017.23456 - Technical Description | |
References | () https://jhalderm.com/pub/papers/interception-ndss17.pdf - Technical Description | |
References | () https://www.ndss-symposium.org/ndss2017/ndss-2017-programme/security-impact-https-interception/ - Technical Description |
Information
Published : 2018-03-12 04:29
Updated : 2024-11-21 03:19
NVD link : CVE-2017-18227
Mitre link : CVE-2017-18227
CVE.ORG link : CVE-2017-18227
JSON object : View
Products Affected
titanhq
- webtitan_gateway
CWE
CWE-295
Improper Certificate Validation