RSS   Podatności dla 'OTP'   RSS

2021-01-15
 
CVE-2020-35733

CWE-295
 
 
An issue was discovered in Erlang/OTP before 23.2.2. The ssl application 10.2 accepts and trusts an invalid X.509 certificate chain to a trusted root Certification Authority.

 
2016-04-07
 
CVE-2015-2774

CWE-200
 
 
Erlang/OTP before 18.0-rc1 does not properly check CBC padding bytes when terminating connections, which makes it easier for man-in-the-middle attackers to obtain cleartext data via a padding-oracle attack, a variant of CVE-2014-3566 (aka POODLE).

 

 >>> Vendor: Erlang 6 Produkty
Erlang
Crypto
Erlang/otp
OTP
Rebar3
Erlang\/otp

Copyright 2024, cxsecurity.com

 

Back to Top