CVE-2012-1316

5.9MEDIUM

Key Information:

Vendor: Cisco
Status: Ironport Web Security Appliance
Vendor: CVE Published:; 15 January 2020

Summary

Cisco IronPort Web Security Appliance does not check for certificate revocation which could lead to MITM attacks

Affected Version(s)

IronPort Web Security Appliance through at least 2012-04-11

References

http://www.securityfocus.com/bid/52981

x_refsource_MISC

https://www.secureworks.com/research/transitive-trust

x_refsource_MISC

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 15, 2020
Vulnerability Reserved
Feb 27, 2012

.