Page 2 of 6 results (0.002 seconds)
CVSS: 6.0EPSS: 0%CPEs: 44EXPL: 0
CVSS: 6.0EPSS: 0%CPEs: 44EXPL: 0CVE-2020-12143 – The certificate used to identify Orchestrator to EdgeConnect devices is not validated
https://notcve.org/view.php?id=CVE-2020-12143
The certificate used to identify Orchestrator to EdgeConnect devices is not validated, which makes it possible for someone to establish a TLS connection from EdgeConnect to an untrusted Orchestrator. El certificado utilizado para identificar Orchestrator a los dispositivos EdgeConnect no está validado, lo que hace posible que alguien establezca una conexión TLS desde EdgeConnect a un Orchestrator no confiable. • https://www.silver-peak.com/sites/default/files/advisory/security_advisory_notice_rogue_orchestrator-cve_2020_12143.pdf • CWE-295: Improper Certificate Validation •