1 results (0.002 seconds)
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-2648
https://notcve.org/view.php?id=CVE-2017-2648
27 Jul 2018 — It was found that jenkins-ssh-slaves-plugin before version 1.15 did not perform host key verification, thereby enabling Man-in-the-Middle attacks. Se ha encontrado que jenkins-ssh-slaves-plugin en versiones anteriores a la 1.15 no realizaba la verificación de la clave del host, permitiendo así ataques Man-in-the-Middle (MitM). • http://www.securityfocus.com/bid/96985 • CWE-295: Improper Certificate Validation •