CVSS: 6.4EPSS: 1%CPEs: 2EXPL: 0CVE-2008-1938
https://notcve.org/view.php?id=CVE-2008-1938
Sony Mylo COM-2 Japanese model firmware before 1.002 does not properly verify web server SSL certificates, which allows remote attackers to obtain sensitive information and conduct spoofing attacks. El firmware del Sony Mylo COM-2, modelo japonés anterior a 1.002 no verifica de forma adecuada el certificado SSL del servidor Web, lo que permite a los atacantes remotos obtener información sensible y conducir ataques de Spoofing. • http://esupport.sony.com/perl/news-item.pl?news_id=262&mdl=COM2 http://jvn.jp/jp/JVN%2376788395/index.html http://mylo.nccl.sony.co.jp/download/M-W002-001-02/index.html http://mylo.nccl.sony.co.jp/hotnews/2008/04/01/index.html http://secunia.com/advisories/29928 http://www.securityfocus.com/bid/28905 http://www.vupen.com/english/advisories/2008/1349/references https://exchange.xforce.ibmcloud.com/vulnerabilities/41971 • CWE-287: Improper Authentication •