CVE-2017-18227

TitanHQ WebTitan Gateway has incorrect certificate validation for the TLS interception feature.
Configurations

Configuration 1 (hide)

cpe:2.3:a:titanhq:webtitan_gateway:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:19

Type Values Removed Values Added
References () http://dx.doi.org/10.14722/ndss.2017.23456 - Technical Description () http://dx.doi.org/10.14722/ndss.2017.23456 - Technical Description
References () https://jhalderm.com/pub/papers/interception-ndss17.pdf - Technical Description () https://jhalderm.com/pub/papers/interception-ndss17.pdf - Technical Description
References () https://www.ndss-symposium.org/ndss2017/ndss-2017-programme/security-impact-https-interception/ - Technical Description () https://www.ndss-symposium.org/ndss2017/ndss-2017-programme/security-impact-https-interception/ - Technical Description

Information

Published : 2018-03-12 04:29

Updated : 2024-11-21 03:19


NVD link : CVE-2017-18227

Mitre link : CVE-2017-18227

CVE.ORG link : CVE-2017-18227


JSON object : View

Products Affected

titanhq

  • webtitan_gateway
CWE
CWE-295

Improper Certificate Validation