CVE-2020-1596 · CVEKit

cve.orgen

444 chars

A information disclosure vulnerability exists when TLS components use weak hash algorithms. An attacker who successfully exploited this vulnerability could obtain information to further compromise a users's encrypted transmission channel. To exploit the vulnerability, an attacker would have to conduct a man-in-the-middle attack. The update addresses the vulnerability by correcting how TLS components use hash algorithms.

NVDen

444 chars

A information disclosure vulnerability exists when TLS components use weak hash algorithms. An attacker who successfully exploited this vulnerability could obtain information to further compromise a users's encrypted transmission channel. To exploit the vulnerability, an attacker would have to conduct a man-in-the-middle attack. The update addresses the vulnerability by correcting how TLS components use hash algorithms.

NVDes

190 chars

Se presenta una vulnerabilidad de divulgación de información cuando los componentes TLS utilizan algoritmos de hash débiles, también se conoce como "TLS Information Disclosure Vulnerability"

CVSS metrics across sources

4

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	2.9	5.5	2.9	AV:A/AC:M/Au:N/C:P/I:N/A:N
3.1	Primary	cve.org	5.4	—	—	CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N/E:P/RL:O/RC:C