- Home
- CVEs with nessus.description==OpenSSL before 1.0.0c, when J-PAKE is enabled, does not properly
validate the public parameters in the J-PAKE protocol, which allows
remote attackers to bypass the need for knowledge of the shared
secret, and successfully authenticate, by sending crafted values in
each round of the protocol. (CVE-2010-4252)
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top