Adobe ColdFusion 10 before Update 19, 11 before Update 8, and 2016 before Update 1 mishandles wildcards in name fields of X.509 certificates, which might allow man-in-the-middle attackers to spoof servers via a crafted certificate.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: adobe
Published: 2016-05-11T01:00:00
Updated: 2024-08-05T22:48:13.080Z
Reserved: 2015-12-22T00:00:00
Link: CVE-2016-1115
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2016-05-11T01:59:44.810
Modified: 2020-09-04T14:05:59.130
Link: CVE-2016-1115
Redhat
No data.