Description
Splunk-SDK-Python before 1.6.6 does not properly verify untrusted TLS server certificates, which could result in man-in-the-middle attacks.
Analysis
No analysis available yet.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| n/a | n/a | affected |
|
No data.
No data available yet.
Remediation
No remediation available yet.
Tracking
Sign in to view the affected projects.
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2019-0131 | Splunk-SDK-Python before 1.6.6 does not properly verify untrusted TLS server certificates, which could result in man-in-the-middle attacks. |
 Github GHSA |
GHSA-f58w-649r-qjr9 | splunk-sdk does not properly verify untrusted TLS server certificates |
References
| Link | Providers |
|---|---|
| https://www.splunk.com/view/SP-CAAAQAD |
|
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published:
Updated: 2024-08-04T20:01:52.311Z
Reserved: 2019-01-08T00:00:00.000Z
Link: CVE-2019-5729
Vulnrichment
No data.
NVD
Status : Modified
Published: 2019-03-21T16:01:05.797
Modified: 2024-11-21T04:45:24.420
Link: CVE-2019-5729
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses