CVE-2013-2191

NONECVSS 0.0

0.0

python-bugzilla before 0.9.0 does not validate X.509 certificates, which allows man-in-the-middle attackers to spoof Bugzilla servers via a crafted certificate.

🔗 References (12)

secalert@redhathttp://lists.opensuse.org/opensuse-updates/2013-07/msg00025.html
secalert@redhathttp://lists.opensuse.org/opensuse-updates/2013-07/msg00026.html
secalert@redhathttp://www.openwall.com/lists/oss-security/2013/06/19/6
secalert@redhathttps://bugzilla.redhat.com/show_bug.cgi?id=951594
secalert@redhathttps://git.fedorahosted.org/cgit/python-bugzilla.git/commit/?id=a782282ee479ba4cc1b8b1d89700ac630ba83eef
secalert@redhathttps://lists.fedorahosted.org/pipermail/python-bugzilla/2013-June/000104.html
af854a3a-2127-422b-91ae-364da2661108http://lists.opensuse.org/opensuse-updates/2013-07/msg00025.html
af854a3a-2127-422b-91ae-364da2661108http://lists.opensuse.org/opensuse-updates/2013-07/msg00026.html
af854a3a-2127-422b-91ae-364da2661108http://www.openwall.com/lists/oss-security/2013/06/19/6
af854a3a-2127-422b-91ae-364da2661108https://bugzilla.redhat.com/show_bug.cgi?id=951594
af854a3a-2127-422b-91ae-364da2661108https://git.fedorahosted.org/cgit/python-bugzilla.git/commit/?id=a782282ee479ba4cc1b8b1d89700ac630ba83eef
af854a3a-2127-422b-91ae-364da2661108https://lists.fedorahosted.org/pipermail/python-bugzilla/2013-June/000104.html

Is Your Infrastructure Affected by CVE-2013-2191?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2013-2191

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2013-2191?