1 results (0.003 seconds)
CVSS: 6.9EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.9EPSS: 0%CPEs: 1EXPL: 0CVE-2019-16791 – downgrade of effective Strict Transport Security (STS) policy in postfix-mta-sts-resolver
https://notcve.org/view.php?id=CVE-2019-16791
In postfix-mta-sts-resolver before 0.5.1, All users can receive incorrect response from daemon under rare conditions, rendering downgrade of effective STS policy. En postfix-mta-sts-resolver versiones anteriores a 0.5.1, todos los usuarios pueden recibir una respuesta incorrecta del demonio bajo condiciones extrañas, renderizando una degradación de la política STS efectiva. • https://gist.github.com/Snawoot/b9da85d6b26dea5460673b29df1adc6b https://github.com/Snawoot/postfix-mta-sts-resolver/security/advisories/GHSA-h92m-42h4-82f6 • CWE-757: Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade') •