CVE-2014-9754

CVE-2014-9754

The hardware VPN client in Viprinet MultichannelVPN Router 300 verison 2013070830/2013080900 does not validate the remote VPN endpoint identity (through the checking of the endpoint’s SSL key) before initiating the exchange, which allows an attacker to perform a Man in the Middle attack.

Source: CVE-2014-9754

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다